CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

Tenable Nessus•added 2025/09/03 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2021-21996

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in SaltStack Salt before 3003.3. A user who has control of the source, and sourcehash URLs can gain full file system access as root on a...

7.5CVSS7.1AI score0.02263EPSS

Exploits0References2

Veracode•added 2022/03/31 7:0 a.m.•5 views

Authentication Bypass

salt is vulnerable to authentication bypass. The vulnerability exists in the validatetgt function in minions.py because the publisher acls are not properly applied when the minions are behind a syndic which allows a user to access and publish commands to any configured minion...

8.8CVSS6.9AI score0.00016EPSS

Exploits0References7Affected Software1

RedhatCVE•added 2022/01/18 11:44 a.m.•30 views

CVE-2021-21996

An Exposure of Resource to Wrong Sphere flaw was found in Salt. This flaw allows a user who has control of the source and sourcehash URLs to gain full file system access as root on a Salt minion...

7.5CVSS2.2AI score0.02263EPSS

Exploits0References3