Buffer Overflow vulnerability in Saltstack v.3003 and before allows attacker to execute arbitrary code via the func variable in salt/salt/modules/status.py file. NOTE: this is disputed by third parties because an attacker cannot influence the eval input
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HSaltstack Salt
APPSaltstack≤ 3003
Powiązane podatności
An issue was discovered in SaltStack Salt through 3002. Sending crafted web requests to the Salt API, with the...
An issue was discovered in SaltStack Salt before 2019.2.4 and 3000 before 3000.2. The salt-master process Clea...
Path Traversal w SaltStack Salt – zapis dowolnych plików w katalogu cache mastera
CWE - CWE-287: Improper Authentication vulnerability in SUSE Linux Enterprise Server 15 SP 3; openSUSE Tumblew...
An issue was discovered in through SaltStack Salt before 3002.5. The salt.wheel.pillar_roots.write method is v...