A vulnerability was found in nodeca js-yaml up to 3.14.x/4.2.x and classified as problematic. This affects an unknown function of the component JavaScript YAML Parser. Executing a manipulation can lead to resource consumption.
This vulnerability is tracked as CVE-2026-59869. The attack can be launched remotely. No exploit exists.