PYSEC-2013-13

2013-11-05T18:55:00
ID OSV:PYSEC-2013-13
Type osv
Reporter Google
Modified 2021-07-05T00:01:26

Description

Salt (aka SaltStack) before 0.17.1 allows remote attackers to execute arbitrary YAML code via unspecified vectors. NOTE: the vendor states that this might not be a vulnerability because the YAML to be loaded has already been determined to be safe.