Lucene search

GoogleOSV:DSA-4676-2

HistoryMay 07, 2020 - 12:00 a.m.

salt - security update

2020-05-0700:00:00

Google

osv.dev

8.2 High

AI Score

Confidence

High

0.975 High

EPSS

Percentile

100.0%

JSON

Bulletin has no description

CPENameOperatorVersion
salteq2016.11.2+ds-1+deb9u1
salteq2016.11.2+ds-1+deb9u3
salteq2016.11.2+ds-1+deb9u2
salteq2016.11.2+ds-1

Name	Operator	Version
salt	eq	2016.11.2+ds-1+deb9u1
salt	eq	2016.11.2+ds-1+deb9u3
salt	eq	2016.11.2+ds-1+deb9u2
salt	eq	2016.11.2+ds-1

vmware

vRealize Operations Application Remote Collector (ARC) addresses Authentication Bypass and Directory Traversal vulnerabilities (CVE-2020-11651, CVE-2020-11652)

2020-05-08 00:00:00

suse

Security update for salt (critical)

2020-04-30 00:00:00

Security update for salt (moderate)

2020-07-26 00:00:00

Security update for salt (critical)

2021-07-11 00:00:00

debian

[SECURITY] [DSA 4676-2] salt security update

2020-05-07 20:16:07

[SECURITY] [DLA 2223-1] salt security update

2020-05-30 04:21:15

[SECURITY] [DSA 4676-2] salt security update

2020-05-07 20:16:07

nessus

FreeBSD : salt -- multiple vulnerabilities in salt-master process (6bf55af9-973b-11ea-9f2c-38d547003487)

2020-05-18 00:00:00

SUSE SLED15 / SLES15 Security Update : salt (SUSE-SU-2020:1150-1)

2020-04-30 00:00:00

SaltStack < 2019.2.4 / 3000.x < 3000.2 Multiple Vulnerabilities

2020-05-07 00:00:00

zdt

SaltStack Salt Master/Minion Unauthenticated Remote Code Execution Exploit

2020-05-12 00:00:00

Saltstack 3000.1 Remote Code Execution Exploit

2020-05-07 00:00:00

Saltstack 3000.1 - Remote Code Execution Exploit

2020-05-04 00:00:00

checkpoint_advisories

Saltstack Salt Authentication Bypass (CVE-2020-11651; CVE-2020-11652)

2020-05-05 00:00:00

githubexploit

Exploit for Missing Authentication for Critical Function in Saltstack Salt

2020-05-01 20:53:49

Exploit for Missing Authentication for Critical Function in Saltstack Salt

2020-05-04 11:52:28

Exploit for Missing Authentication for Critical Function in Saltstack Salt

2020-05-01 03:23:01

osv

salt vulnerabilities

2024-06-25 19:30:08

salt - security update

2020-05-29 00:00:00

salt - security update

2020-05-06 00:00:00

trendmicroblog

This Week in Security News: How the Cybercriminal Underground Has Changed in 5 Years and the NSA Warns of New Sandworm Attacks on Email Servers

2020-05-29 12:27:26

archlinux

[ASA-202005-1] salt: multiple issues

2020-05-05 00:00:00

cisco

SaltStack FrameWork Vulnerabilities Affecting Cisco Products

2020-05-28 16:00:00

thn

Critical SaltStack RCE Bug (CVSS Score 10) Affects Thousands of Data Centers

2020-05-01 13:04:00

Hackers Breach LineageOS, Ghost, DigiCert Servers Using SaltStack Vulnerability

2020-05-04 04:00:00

Top 15 Vulnerabilities Attackers Exploited Millions of Times to Hack Linux Systems

2021-08-23 13:27:00

freebsd

salt -- multiple vulnerabilities in salt-master process

2020-04-30 00:00:00

metasploit

SaltStack Salt Master/Minion Unauthenticated RCE

2020-05-11 17:05:38

SaltStack Salt Master Server Root Key Disclosure

2020-05-11 17:05:38

openvas

SUSE: Security Advisory (SUSE-SU-2020:1150-1)

2021-06-09 00:00:00

Debian: Security Advisory (DLA-2223-1)

2020-05-31 00:00:00

Ubuntu: Security Advisory (USN-6849-1)

2024-06-26 00:00:00

ubuntu

Salt vulnerabilities

2024-06-25 00:00:00

Salt vulnerabilities

2020-08-13 00:00:00

huawei

Security Advisory - Two Vulnerabilities in SaltStack Salt

2020-07-15 00:00:00

packetstorm

SaltStack Salt Master/Minion Unauthenticated Remote Code Execution

2020-05-12 00:00:00

Saltstack 3000.1 Remote Code Execution

2020-05-05 00:00:00

attackerkb

CVE-2020-11652

2020-04-30 00:00:00

CVE-2020-11651

2020-04-30 00:00:00

CVE-2020-25592 — SaltStack Authentication Bypass and Salt SSH Command Execution

2020-11-06 00:00:00

threatpost

Hackers Exploit Critical Flaw in Ghost Platform with Cryptojacking Attack

2020-05-04 19:23:41

Salt Bugs Allow Full RCE as Root on Cloud Servers

2020-04-30 20:54:50

Hackers Compromise Cisco Servers Via SaltStack Flaws

2020-05-28 20:51:25

cisa

SaltStack Patches Critical Vulnerabilities in Salt

2020-05-01 00:00:00

photon

Critical Photon OS Security Update - PHSA-2020-0091

2020-05-15 00:00:00

Critical Photon OS Security Update - PHSA-2020-3.0-0091

2020-05-15 00:00:00

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-1.0-0294

2020-05-14 00:00:00

exploitdb

Saltstack 3000.1 - Remote Code Execution

2020-05-05 00:00:00

veracode

Arbitrary Directory Access

2020-05-04 04:38:10

Authentication Bypass

2020-05-04 05:37:27

ubuntucve

CVE-2020-11652

2020-04-30 00:00:00

CVE-2020-11651

2020-04-30 00:00:00

cisa_kev

SaltStack Salt Authentication Bypass Vulnerability

2021-11-03 00:00:00

SaltStack Salt Path Traversal Vulnerability

2021-11-03 00:00:00

redhatcve

CVE-2020-11651

2020-05-06 17:39:55

CVE-2020-11652

2020-05-06 17:40:11

cve

CVE-2020-11651

2020-04-30 17:15:12

CVE-2020-11652

2020-04-30 17:15:12

github

SaltStack Salt Unauthenticated Remote Code Execution

2022-05-24 17:16:59

SaltStack Salt is vulnerable Arbitrary Directory Access

2022-05-24 17:16:58

debiancve

CVE-2020-11651

2020-04-30 17:15:12

CVE-2020-11652

2020-04-30 17:15:12

cvelist

CVE-2020-11651

2020-04-30 16:58:09

CVE-2020-11652

2020-04-30 17:00:03

alpinelinux

CVE-2020-11651

2020-04-30 17:15:12

CVE-2020-11652

2020-04-30 17:15:12

prion

Improper access control

2020-04-30 17:15:00

Authentication flaw

2020-04-30 17:15:00

nvd

CVE-2020-11652

2020-04-30 17:15:12

CVE-2020-11651

2020-04-30 17:15:12

rapid7blog

SaltStack Pre-Authenticated Remote Root (CVE-2020-16846 and CVE-2020-25592): What You Need to Know

2020-11-10 14:22:33

8.2 High

AI Score

Confidence

High

0.975 High

EPSS

Percentile

100.0%

JSON