7 matches found
SUSE CVE-2021-25282
An issue was discovered in through SaltStack Salt before 3002.5. The salt.wheel.pillarroots.write method is vulnerable to directory traversal...
The vulnerability of the implementation of the salt.wheel.pillar_roots.write method in the configuration management system and remote execution of SaltStack Salt operations allows a perpetrator to disclose sensitive information.
The vulnerability of the salt.wheel.pillarroots.write method in the configuration management system and remote execution of SaltStack Salt is related to an incorrect limitation on the path name to the restricted directory. Exploiting this vulnerability could allow a malicious actor to expose...
SaltStack Salt Directory Traversal vulnerability
An issue was discovered in through SaltStack Salt before 3002.5. The salt.wheel.pillarroots.write method is vulnerable to directory traversal...
The vulnerability of the `wheel.pillar_roots.write` component in the configuration management system and the remote execution of SaltStack Salt, which is related to errors in data validation, allows a perpetrator to execute arbitrary code.
The vulnerability of the wheel.pillarroots.write component in the configuration management system and the remote execution of SaltStack Salt are related to errors during data validation. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
SaltStack Salt Method Directory Traversal (CVE-2021-25282)
A directory traversal vulnerability exists in the WheelClient for Salt API, a component of SaltStack Salt. The vulnerability is due to improper validation of user-supplied in the pillarroots.write method...
UBUNTU-CVE-2021-25282
An issue was discovered in through SaltStack Salt before 3002.5. The salt.wheel.pillarroots.write method is vulnerable to directory traversal...
PYSEC-2021-51
An issue was discovered in through SaltStack Salt before 3002.5. The salt.wheel.pillarroots.write method is vulnerable to directory traversal...