CVE-2020-8441: Deserialization of Untrusted Data in JYaml

Severity: Critical

CVSS Score: 9.8

JYaml through 1.3 allows remote code execution during deserialization of a malicious payload through the load() function. NOTE: this is a discontinued product.