GHSA-R546-H3FF-Q585 Salt vulnerable to directory traversal attack in minion file cache creation

Directory traversal attack in minion file cache creation. The master's default cache is vulnerable to a directory traversal attack. Which could be leveraged to write or overwrite 'cache' files outside of the cache directory...

CVE-2025-22238

Directory traversal attack in minion file cache creation. The master's default cache is vulnerable to a directory traversal attack. Which could be leveraged to write or overwrite 'cache' files outside of the cache directory...

CVE-2025-22238 CVE-2025-22238 salt advisory

Directory traversal attack in minion file cache creation. The master's default cache is vulnerable to a directory traversal attack. Which could be leveraged to write or overwrite 'cache' files outside of the cache directory...

CVE-2025-22238

CVE-2025-22238 describes a directory traversal vulnerability in Salt’s master cache handling, where the master’s default cache could be written to or overwritten outside the intended cache directory via the minion file cache creation. Connected sources confirm the issue is real in Salt deployment...