salt vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2021-25283Criticalsalt: SaltStack Salt Server Side Template InjectionCVE-2021-25281Criticalsalt: SaltStack Salt Improper Authentication vulnerabilityCVE-2020-28243Highsalt: SaltStack Salt command injection via a crafted process nameCVE-2020-28972Highsalt: SaltStack Salt Improper Certificate ValidationCVE-2020-35662Highsalt: SaltStack Salt Improper SSL Certificate ValidationCVE-2020-16846Criticalsalt: SaltStack Salt Command Injection in netapi ssh clientCVE-2020-25592Criticalsalt: SaltStack Salt Improper Validation of eauth credentials and tokens in salt-netapiCVE-2020-17490Mediumsalt: SaltStack Salt Allows creating certificates with weak file permissionsCVE-2020-11651Criticalsalt: SaltStack Salt Unauthenticated Remote Code ExecutionCVE-2020-11652Highsalt: SaltStack Salt is vulnerable Arbitrary Directory AccessCVE-2019-17361Criticalsalt: SaltStack Salt is vulnerable to command injectionCVE-2019-1010259Criticalsalt: SaltStack Salt SQL Injection vulnerability in mysql.user_chpass functionCVE-2013-6617Highsalt: SaltStack Privilege Escalation vulnerabilityCVE-2013-4439Highsalt: Minion identity not validated in saltstackCVE-2013-4436Highsalt: SaltStack MITM SSH attack in salt-sshCVE-2013-4437Highsalt: SaltStack insecurely uses /tmpCVE-2013-4435Highsalt: Salt has insufficient argument validation in several modulesCVE-2016-3176Mediumsalt: Salt Insecure configuration of PAM external authentication serviceCVE-2016-9639Criticalsalt: Salt allows deleted minions to read or write to minions with the same idCVE-2015-8034Lowsalt: Salt uses weak permissions on the cache dataCVE-2015-1839Mediumsalt: SaltStack has insecure /tmp file handling in salt/modules/chef.pyCVE-2015-1838Mediumsalt: Salt improper handling of tmp filesCVE-2017-8109Highsalt: SaltStack Salt Information ExposureCVE-2015-6941Criticalsalt: salt password information leaked in debug logsCVE-2014-3563Highsalt: SaltStack Salt Insecure Temporary File Creation

Stop the waste.
Protect your environment with Kodem.