Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

853 matches found

Prion
Prionadded 2019/12/03 2:15 p.m.8 views

Code injection

SaltStack RSA Key Generation allows remote users to decrypt communications...

4.3CVSS7.1AI score0.01018EPSS
Exploits0References7Affected Software1
UbuntuCve
UbuntuCveadded 2019/12/03 2:15 p.m.14 views

CVE-2013-2228

SaltStack RSA Key Generation allows remote users to decrypt communications...

8.1CVSS7.2AI score0.01018EPSS
Exploits0References1
Debian CVE
Debian CVEadded 2019/12/03 1:55 p.m.13 views

CVE-2013-2228

Removed by vendor...

8.1CVSS8.1AI score0.01018EPSS
Exploits0
Cvelist
Cvelistadded 2019/12/03 1:55 p.m.10 views

CVE-2013-2228

SaltStack RSA Key Generation allows remote users to decrypt communications...

8.1AI score0.01018EPSS
Exploits0References7
CVE
CVEadded 2019/12/03 1:55 p.m.44 views

CVE-2013-2228

Technical details about CVE-2013-2228 are not publicly provided in the supplied documents. Monitor for updates and new advisories.

8.1CVSS8AI score0.01018EPSS
Exploits0References7Affected Software1
CNVD
CNVDadded 2019/07/22 12:0 a.m.1 views

SaltStack Salt MySQL Module SQL Injection Vulnerability

SaltStack Salt is a set of open source tools for managing infrastructure from SaltStack. The tool provides configuration management, remote execution, and more. A SQL injection vulnerability exists in the SaltStack Salt MySQL module. The vulnerability stems from a lack of validation of externally...

9.8CVSS8.2AI score0.00363EPSS
Exploits1References1
OSV
OSVadded 2019/07/18 5:15 p.m.1 views

CVE-2019-1010259

SaltStack Salt 2018.3, 2019.2 is affected by: SQL Injection. The impact is: An attacker could escalate privileges on MySQL server deployed by cloud provider. It leads to RCE. The component is: The mysql.userchpass function from the MySQL module for Salt. The attack vector is: specially crafted...

9.8CVSS7.2AI score0.00363EPSS
Exploits1References3
NVD
NVDadded 2019/07/18 5:15 p.m.9 views

CVE-2019-1010259

SaltStack Salt 2018.3, 2019.2 is affected by: SQL Injection. The impact is: An attacker could escalate privileges on MySQL server deployed by cloud provider. It leads to RCE. The component is: The mysql.userchpass function from the MySQL module for Salt. The attack vector is: specially crafted...

9.8CVSS9.8AI score0.00363EPSS
Exploits1References3
OSV
OSVadded 2019/07/18 5:15 p.m.12 views

PYSEC-2019-49

SaltStack Salt 2018.3, 2019.2 is affected by: SQL Injection. The impact is: An attacker could escalate privileges on MySQL server deployed by cloud provider. It leads to RCE. The component is: The mysql.userchpass function from the MySQL module for Salt. The attack vector is: specially crafted...

6.1AI score
Exploits0References3
OSV
OSVadded 2019/07/18 5:15 p.m.0 views

UBUNTU-CVE-2019-1010259

SaltStack Salt 2018.3, 2019.2 is affected by: SQL Injection. The impact is: An attacker could escalate privileges on MySQL server deployed by cloud provider. It leads to RCE. The component is: The mysql.userchpass function from the MySQL module for Salt. The attack vector is: specially crafted...

9.8CVSS7.3AI score0.00363EPSS
Exploits1References3
PyPA
PyPAadded 2019/07/18 5:15 p.m.4 views

PYSEC-2019-119

SaltStack Salt 2018.3, 2019.2 is affected by: SQL Injection. The impact is: An attacker could escalate privileges on MySQL server deployed by cloud provider. It leads to RCE. The component is: The mysql.userchpass function from the MySQL module for Salt. The attack vector is: specially crafted...

9.8CVSS7.7AI score0.00363EPSS
Exploits1References3Affected Software1
UbuntuCve
UbuntuCveadded 2019/07/18 5:15 p.m.19 views

CVE-2019-1010259

SaltStack Salt 2018.3, 2019.2 is affected by: SQL Injection. The impact is: An attacker could escalate privileges on MySQL server deployed by cloud provider. It leads to RCE. The component is: The mysql.userchpass function from the MySQL module for Salt. The attack vector is: specially crafted...

9.8CVSS7.2AI score0.00363EPSS
Exploits1References2
OSV
OSVadded 2019/07/18 5:15 p.m.10 views

PYSEC-2019-119

SaltStack Salt 2018.3, 2019.2 is affected by: SQL Injection. The impact is: An attacker could escalate privileges on MySQL server deployed by cloud provider. It leads to RCE. The component is: The mysql.userchpass function from the MySQL module for Salt. The attack vector is: specially crafted...

9.8CVSS6.1AI score0.00363EPSS
Exploits1References3
Prion
Prionadded 2019/07/18 5:15 p.m.8 views

Sql injection

SaltStack Salt 2018.3, 2019.2 is affected by: SQL Injection. The impact is: An attacker could escalate privileges on MySQL server deployed by cloud provider. It leads to RCE. The component is: The mysql.userchpass function from the MySQL module for Salt. The attack vector is: specially crafted...

7.5CVSS9.8AI score0.00363EPSS
Exploits1References3Affected Software2
CVE
CVEadded 2019/07/18 4:33 p.m.76 views

CVE-2019-1010259

SaltStack Salt 2018.3 and 2019.2 are affected by a SQL Injection in the MySQL module, specifically the mysql.user_chpass function. The underlying issue allows an attacker to escalate privileges on a cloud-deployed MySQL server, potentially leading to remote code execution. The attack vector is a ...

9.8CVSS9.7AI score0.00363EPSS
Exploits1References3Affected Software2
Debian CVE
Debian CVEadded 2019/07/18 4:33 p.m.12 views

CVE-2019-1010259

Removed by vendor...

9.8CVSS9.4AI score0.00363EPSS
Exploits1
Cvelist
Cvelistadded 2019/07/18 4:33 p.m.10 views

CVE-2019-1010259

SaltStack Salt 2018.3, 2019.2 is affected by: SQL Injection. The impact is: An attacker could escalate privileges on MySQL server deployed by cloud provider. It leads to RCE. The component is: The mysql.userchpass function from the MySQL module for Salt. The attack vector is: specially crafted...

9.8AI score0.00363EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2018/10/31 2:20 a.m.27 views

CVE-2018-15750

Directory Traversal vulnerability in salt-api in SaltStack Salt before 2017.7.8 and 2018.3.x before 2018.3.3 allows remote attackers to determine which files exist on the server...

5.3CVSS5.5AI score0.00912EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2018/10/29 12:0 a.m.29 views

FreeBSD : salt -- multiple vulnerabilities (4f7c6af3-6a2c-4ead-8453-04e509688d45)

SaltStack reports : Remote command execution and incorrect access control when using salt-api. Directory traversal vulnerability when using salt-api. Allows an attacker to determine what files exist on a server when querying /run or /events. C Tenable Network Security, Inc. The descriptive text a...

9.8CVSS7.3AI score0.00912EPSS
Exploits0References5
CNVD
CNVDadded 2018/10/25 12:0 a.m.1 views

SaltStack Salt Directory Traversal Vulnerability (CNVD-2018-21848)

SaltStack Salt aka SaltStack is a set of open source tools for managing infrastructure from SaltStack, Inc. in the United States. The tool provides configuration management, remote execution and other functions , able to manage tens of thousands of servers , with the ability to quickly complete t...

5.3CVSS7.5AI score0.00912EPSS
Exploits0References1
Rows per page
Query Builder