Known Vulnerabilities for Yaml by Yaml Project
Listed below are 5 of the newest known vulnerabilities associated with "Yaml" by "Yaml Project".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-34070 | LangChain is a framework for building agents and LLM-powered applications. Prior to version 1.2.22, multiple functions in lan... | Not Provided | 2026-03-31 | 2026-03-31 |
| CVE-2026-33744 | BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to 1.4.37, t... | Not Provided | 2026-03-27 | 2026-03-27 |
| CVE-2026-33664 | Kestra is an open-source, event-driven orchestration platform Versions up to and including 1.3.3 render user-supplied flow YA... | Not Provided | 2026-03-26 | 2026-03-27 |
| CVE-2026-33532 | `yaml` is a YAML parser and serialiser for JavaScript. Parsing a YAML document with a version of `yaml` on the 1.x branch pri... | Not Provided | 2026-03-26 | 2026-03-30 |
| CVE-2025-15379 | A command injection vulnerability exists in MLflow's model serving container initialization code, specifically in the `_insta... | Not Provided | 2026-03-30 | 2026-03-31 |