Lucene search
K

17 matches found

OpenVAS
OpenVAS
added 2024/08/09 12:0 a.m.19 views

Ubuntu: Security Advisory (USN-6948-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.4AI score0.99585EPSS
Exploits13References4
SUSE CVE
SUSE CVE
added 2023/02/15 3:49 a.m.4 views

SUSE CVE-2021-3148

An issue was discovered in SaltStack Salt before 3002.5. Sending crafted web requests to the Salt API can result in salt.utils.thin.genthin command injection because of different handling of single versus double quotes. This is related to salt/utils/thin.py...

9.8CVSS9.6AI score0.08246EPSS
Exploits0References32
vulnersOsv
vulnersOsv
added 2022/05/24 5:43 p.m.6 views

elita (>=0.60.0 <=0.64.1) potentially affected by CVE-2021-3148 via salt (=2014.1.10)

salt PYPI version =2014.1.10 is affected by a known vulnerability. The following packages have a transitive dependency on salt and may be impacted: - elita =0.60.0, =0.64.1 Source cves: CVE-2021-3148 Source advisory: OSV:GHSA-GHC2-HX3W-JQMP...

9.8CVSS7.2AI score0.08246EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2021:14682-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.4AI score0.92312EPSS
Exploits8References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2021:0630-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.4AI score0.92312EPSS
Exploits8References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2021:14650-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.92312EPSS
Exploits8References15
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2021:0628-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.92312EPSS
Exploits8References15
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2021:0631-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.92312EPSS
Exploits8References15
OpenVAS
OpenVAS
added 2021/03/20 12:0 a.m.20 views

Fedora: Security Advisory for salt (FEDORA-2021-43eb5584ad)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.4AI score0.92312EPSS
Exploits8References2
Tenable Nessus
Tenable Nessus
added 2021/03/03 12:0 a.m.36 views

Fedora 32 : salt (2021-904a2dbc0c)

The remote Fedora 32 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-904a2dbc0c advisory. - An issue was discovered in SaltStack Salt before 3002.5. The minion's restartcheck is vulnerable to command injection via a crafted process name...

9.8CVSS7.1AI score0.92312EPSS
Exploits8References11
OpenVAS
OpenVAS
added 2021/03/03 12:0 a.m.22 views

Fedora: Security Advisory for salt (FEDORA-2021-904a2dbc0c)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.4AI score0.92312EPSS
Exploits8References2
Tenable Nessus
Tenable Nessus
added 2021/03/01 12:0 a.m.34 views

openSUSE Security Update : salt (openSUSE-2021-347)

This update for salt fixes the following issues : - Fix regression on cmd.run when passing tuples as cmd bsc1182740 - Allow extrafilerefs as sanitized kwargs for SSH client - Fix errors with virt.update - Fix for multiple for security issues CVE-2020-28243 CVE-2020-28972 CVE-2020-35662...

9.8CVSS6.9AI score0.92312EPSS
Exploits8References22
OSV
OSV
added 2021/02/27 5:15 a.m.15 views

CVE-2021-3148

An issue was discovered in SaltStack Salt before 3002.5. Sending crafted web requests to the Salt API can result in salt.utils.thin.genthin command injection because of different handling of single versus double quotes. This is related to salt/utils/thin.py...

9.8CVSS9.7AI score
Exploits0References9
vulnersOsv
vulnersOsv
added 2021/02/27 5:15 a.m.4 views

elita (>=0.60.0 <=0.64.1) potentially affected by CVE-2021-3148 via salt (=2014.1.10)

salt PYPI version =2014.1.10 is affected by a known vulnerability. The following packages have a transitive dependency on salt and may be impacted: - elita =0.60.0, =0.64.1 Source cves: CVE-2021-3148 Source advisory: OSV:PYSEC-2021-55...

9.8CVSS7.2AI score0.08246EPSS
Exploits0
CVE
CVE
added 2021/02/27 12:0 a.m.276 views

CVE-2021-3148

CVE-2021-3148 affects SaltStack Salt prior to 3002.5. Sending crafted web requests to the Salt API can trigger a command injection via salt.utils.thin.gen_thin() due to divergent handling of single vs. double quotes in salt/utils/thin.py. The vulnerability is documented across multiple advisories...

9.8CVSS9.4AI score0.08246EPSS
Exploits0References9Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/02/27 12:0 a.m.59 views

Photon OS 1.0: Salt3 PHSA-2021-1.0-0364

An update of the salt3 package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2021-1.0-0364. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid146877...

9.8CVSS7.7AI score0.92312EPSS
Exploits8References11
OPENSUSE Linux
OPENSUSE Linux
added 2021/02/26 12:0 a.m.28 views

Security update for salt (critical)

openSUSE Security Update: Security update for salt Announcement ID: openSUSE-SU-2021:0347-1 Rating: critical References: 1181550 1181556 1181557 1181558 1181559 1181560 1181561 1181562 1181563 1181564 1181565 1182740 Cross-References: CVE-2020-28243 CVE-2020-28972 CVE-2020-35662 CVE-2021-25281...

9.8CVSS8.8AI score0.92312EPSS
Exploits8References12
Rows per page
Query Builder