Vulnerabilities > CVE-2017-11692 - Reachable Assertion vulnerability in Yaml-Cpp Project Yaml-Cpp

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
yaml-cpp-project
CWE-617
NVD
Published: 2017-07-30
Updated: 2020-07-27

Summary

The function "Token& Scanner::peek" in scanner.cpp in yaml-cpp 0.5.3 and earlier allows remote attackers to cause a denial of service (assertion failure and application exit) via a '!2' string.

Vulnerable Configurations

Part Description Count
Application
Yaml-Cpp_Project
13

Common Weakness Enumeration (CWE)

References