Lucene search
+L

17 matches found

vulnersosv
vulnersosv
added 2022/05/24 5:43 p.m.7 views

elita (>=0.60.0 <=0.64.1) potentially affected by CVE-2021-3144 via salt (=2014.1.10)

salt PYPI version =2014.1.10 is affected by a known vulnerability. The following packages have a transitive dependency on salt and may be impacted: - elita =0.60.0, =0.64.1 Source cves: CVE-2021-3144 Source advisory: OSV:GHSA-W2HR-3MC8-46GH...

9.1CVSS7.2AI score0.05196EPSS
Exploits0
nessus
nessus
added 2021/06/10 12:0 a.m.60 views

SUSE SLES11 Security Update : salt (SUSE-SU-2021:14650-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:14650-1 advisory. - An issue was discovered in SaltStack Salt before 3002.5. The minion's restartcheck is vulnerable to command injection via a crafted process...

9.8CVSS7.1AI score0.92312EPSS
Exploits8References33
openvas
openvas
added 2021/06/09 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2021:14650-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.92312EPSS
Exploits8References15
openvas
openvas
added 2021/06/09 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2021:14682-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.4AI score0.92312EPSS
Exploits8References2
openvas
openvas
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2021:0630-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.4AI score0.92312EPSS
Exploits8References2
openvas
openvas
added 2021/04/19 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2021:0628-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.92312EPSS
Exploits8References15
openvas
openvas
added 2021/04/19 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2021:0631-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.92312EPSS
Exploits8References15
openvas
openvas
added 2021/03/20 12:0 a.m.20 views

Fedora: Security Advisory for salt (FEDORA-2021-43eb5584ad)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.4AI score0.92312EPSS
Exploits8References2
openvas
openvas
added 2021/03/03 12:0 a.m.22 views

Fedora: Security Advisory for salt (FEDORA-2021-904a2dbc0c)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.4AI score0.92312EPSS
Exploits8References2
nessus
nessus
added 2021/03/03 12:0 a.m.36 views

Fedora 32 : salt (2021-904a2dbc0c)

The remote Fedora 32 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-904a2dbc0c advisory. - An issue was discovered in SaltStack Salt before 3002.5. The minion's restartcheck is vulnerable to command injection via a crafted process name...

9.8CVSS7.1AI score0.92312EPSS
Exploits8References11
nessus
nessus
added 2021/03/01 12:0 a.m.34 views

openSUSE Security Update : salt (openSUSE-2021-347)

This update for salt fixes the following issues : - Fix regression on cmd.run when passing tuples as cmd bsc1182740 - Allow extrafilerefs as sanitized kwargs for SSH client - Fix errors with virt.update - Fix for multiple for security issues CVE-2020-28243 CVE-2020-28972 CVE-2020-35662...

9.8CVSS6.9AI score0.92312EPSS
Exploits8References22
vulnersosv
vulnersosv
added 2021/02/27 5:15 a.m.5 views

elita (>=0.60.0 <=0.64.1) potentially affected by CVE-2021-3144 via salt (=2014.1.10)

salt PYPI version =2014.1.10 is affected by a known vulnerability. The following packages have a transitive dependency on salt and may be impacted: - elita =0.60.0, =0.64.1 Source cves: CVE-2021-3144 Source advisory: OSV:PYSEC-2021-54...

9.1CVSS7.2AI score0.05196EPSS
Exploits0
cve
cve
added 2021/02/27 12:0 a.m.275 views

CVE-2021-3144

CVE-2021-3144 affects SaltStack Salt prior to 3002.5. The vulnerability allows eauth tokens to be used once after expiration, potentially enabling an attacker to execute commands against the salt-master or minions. In exposed advisories, the impact is remote command execution with high severity, ...

9.1CVSS9.3AI score0.05196EPSS
Exploits0References9Affected Software1
nessus
nessus
added 2021/02/27 12:0 a.m.59 views

Photon OS 1.0: Salt3 PHSA-2021-1.0-0364

An update of the salt3 package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2021-1.0-0364. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid146877...

9.8CVSS7.7AI score0.92312EPSS
Exploits8References11
nessus
nessus
added 2021/02/27 12:0 a.m.63 views

Photon OS 3.0: Salt3 PHSA-2021-3.0-0200

An update of the salt3 package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2021-3.0-0200. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid146874;...

9.8CVSS8AI score0.92312EPSS
Exploits8References9
alpinelinux
alpinelinux
added 2021/02/27 12:0 a.m.34 views

CVE-2021-3144

In SaltStack Salt before 3002.5, eauth tokens can be used once after expiration. They might be used to run command against the salt master or minions...

9.1CVSS9.6AI score0.05196EPSS
Exploits0
opensuse
opensuse
added 2021/02/26 12:0 a.m.28 views

Security update for salt (critical)

openSUSE Security Update: Security update for salt Announcement ID: openSUSE-SU-2021:0347-1 Rating: critical References: 1181550 1181556 1181557 1181558 1181559 1181560 1181561 1181562 1181563 1181564 1181565 1182740 Cross-References: CVE-2020-28243 CVE-2020-28972 CVE-2020-35662 CVE-2021-25281...

9.8CVSS8.8AI score0.92312EPSS
Exploits8References12
Rows per page
Query Builder