CVE-2022-38750
Denial of Service vulnerability in snakeyaml (Maven)
What is CVE-2022-38750 About?
This vulnerability affects snakeYAML and can lead to a Denial of Service (DoS) when parsing untrusted YAML files. An attacker can supply malformed content that causes the parser to crash due to a stack overflow. Exploitation is possible with crafted input and can render the application unresponsive.
Affected Software
Technical Details
The vulnerability in snakeYAML occurs when parsing user-supplied YAML input. If the YAML file is crafted to have a deeply nested structure or other recursive constructs, the parser's recursive descent parsing algorithm can exhaust the call stack, leading to a stack overflow error. This unhandled exception causes the application or service utilizing the snakeYAML parser to crash, resulting in a denial of service. The attack vector is providing a malicious YAML file to the parsing component.
What is the Impact of CVE-2022-38750?
Successful exploitation may allow attackers to crash the application or service, leading to a complete denial of service and unavailability of system resources.
What is the Exploitability of CVE-2022-38750?
Exploitation requires the ability to provide untrusted YAML input to an application that uses the snakeYAML parser. The complexity is low to moderate, as an attacker needs to craft a YAML file designed to induce a stack overflow. No authentication or specific privileges are typically required if the application exposes an interface for YAML input. It is usually a remote attack vector. The primary risk factor is processing external, untrusted YAML content without proper input validation or resource limits.
What are the Known Public Exploits?
| PoC Author | Link | Commentary |
|---|---|---|
| No known exploits | ||
What are the Available Fixes for CVE-2022-38750?
Available Upgrade Options
- org.yaml:snakeyaml
- <1.31 → Upgrade to 1.31
Struggling with dependency upgrades?
See how Resolved Security's drop-in replacements make it simple.
Book a demoAdditional Resources
- https://osv.dev/vulnerability/GHSA-hhhw-99gj-p3c3
- https://security.netapp.com/advisory/ntap-20240315-0010
- https://security.gentoo.org/glsa/202305-28
- https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=47027
- https://bitbucket.org/snakeyaml/snakeyaml/issues/526/stackoverflow-oss-fuzz-47027
- https://security.netapp.com/advisory/ntap-20240315-0010/
- https://lists.debian.org/debian-lts-announce/2022/10/msg00001.html
- https://bitbucket.org/snakeyaml/snakeyaml/issues/526/stackoverflow-oss-fuzz-47027
- https://nvd.nist.gov/vuln/detail/CVE-2022-38750
- https://bitbucket.org/snakeyaml/snakeyaml
What are Similar Vulnerabilities to CVE-2022-38750?
Similar Vulnerabilities: CVE-2023-28952 , CVE-2022-29977 , CVE-2022-3103 , CVE-2021-3923 , CVE-2020-13936
