CVE-2025-40908

Critical CVSS: 9.1

YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified

Vendor

Product

CWE

Yayın Tarihi

2025-06-01 14:15:21

Güncelleme

2025-07-02 15:43:02

Source Identifier

9b29abf9-4ab0-4765-b253-1875cd9b441e

KEV Date Added

CWE-552 Yaml-libyaml CRITICAL Ingydotnet 2025

https://github.com/ingydotnet/yaml-libyaml-pm/issues/120 https://github.com/ingydotnet/yaml-libyaml-pm/pull/121 https://github.com/ingydotnet/yaml-libyaml-pm/pull/122