Lucene search
K

6 matches found

OSV
OSV
added 2026/01/30 7:16 p.m.7 views

UBUNTU-CVE-2025-62349

Salt contains an authentication protocol version downgrade weakness that can allow a malicious minion to bypass newer authentication/security features by using an older request payload format, enabling minion impersonation and circumventing protections introduced in response to prior issues...

7.5CVSS5.8AI score0.00407EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/01/30 6:59 p.m.5 views

CVE-2025-62349

Salt contains an authentication protocol version downgrade weakness that can allow a malicious minion to bypass newer authentication/security features by using an older request payload format, enabling minion impersonation and circumventing protections introduced in response to prior issues...

7.5CVSS5.9AI score0.00407EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/30 6:59 p.m.4 views

CVE-2025-62349 Salt Master authentication protocol downgrade may enable minion impersonation

Salt contains an authentication protocol version downgrade weakness that can allow a malicious minion to bypass newer authentication/security features by using an older request payload format, enabling minion impersonation and circumventing protections introduced in response to prior issues...

7.5CVSS5.9AI score0.00407EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/01/30 6:59 p.m.25 views

CVE-2025-62349 Salt Master authentication protocol downgrade may enable minion impersonation

Salt contains an authentication protocol version downgrade weakness that can allow a malicious minion to bypass newer authentication/security features by using an older request payload format, enabling minion impersonation and circumventing protections introduced in response to prior issues...

7.5CVSS0.00407EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2026/01/30 6:59 p.m.8 views

CVE-2025-62349

Salt contains an authentication protocol version downgrade weakness that can allow a malicious minion to bypass newer authentication/security features by using an older request payload format, enabling minion impersonation and circumventing protections introduced in response to prior issues...

7.5CVSS5.9AI score0.00407EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/11/28 12:0 a.m.12 views

PT-2026-5435

Name of the Vulnerable Software and Affected Versions Salt affected versions not specified Description Salt is susceptible to an authentication protocol version downgrade. A malicious minion can exploit this to bypass newer authentication and security features by utilizing an older request payloa...

8CVSS6.8AI score0.00407EPSS
Exploits0References134
Rows per page
Query Builder