CVE-2017-18342

Source
Severity High
Remote Yes
Type Arbitrary code execution
Description
In PyYAML before 4.1, the yaml.load() API could execute arbitrary code. In other words, yaml.safe_load is not used.
Group Package Affected Fixed Severity Status Ticket
AVG-843 python-yaml 3.13-2 High Vulnerable FS#61311
References
https://github.com/yaml/pyyaml/pull/74