Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

43 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2024-1887

Malicious code in bioql PyPI...

7.7CVSS7.4AI score0.00439EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2025/09/05 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-38822

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple methods in the salt master skip minion token validation. Therefore a misbehaving minion can impersonate another minion. CVE-2024-38822 Note that Nessus...

2.7CVSS5.4AI score0.00273EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/09/02 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-22239

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Arbitrary event injection on Salt Master. The master's minionevent method can be used by and authorized minion to send arbitrary events onto the master's event...

8.1CVSS5.8AI score0.00144EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2025/06/14 3:4 a.m.2 views

SUSE CVE-2024-38822

Multiple methods in the salt master skip minion token validation. Therefore a misbehaving minion can impersonate another minion...

2.7CVSS7AI score0.00273EPSS
Exploits0References23
RedhatCVE
RedhatCVEadded 2025/06/13 5:34 p.m.4 views

CVE-2025-22239

Arbitrary event injection on Salt Master. The master's "minionevent" method can be used by and authorized minion to send arbitrary events onto the master's event bus. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product...

8.1CVSS8.1AI score0.00144EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/06/13 5:34 p.m.5 views

CVE-2024-38822

Multiple methods in the salt master skip minion token validation. Therefore a misbehaving minion can impersonate another minion. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use...

2.7CVSS3.5AI score0.00273EPSS
Exploits0References2
AlpineLinux
AlpineLinuxadded 2025/06/13 7:15 a.m.2 views

CVE-2025-22239

Arbitrary event injection on Salt Master. The master's "minionevent" method can be used by and authorized minion to send arbitrary events onto the master's event bus...

8.1CVSS7.7AI score0.00144EPSS
Exploits0References2
NVD
NVDadded 2025/06/13 7:15 a.m.8 views

CVE-2024-38822

Multiple methods in the salt master skip minion token validation. Therefore a misbehaving minion can impersonate another minion...

2.7CVSS0.00273EPSS
Exploits0References2
AlpineLinux
AlpineLinuxadded 2025/06/13 7:15 a.m.4 views

CVE-2024-38822

Multiple methods in the salt master skip minion token validation. Therefore a misbehaving minion can impersonate another minion...

2.7CVSS7.3AI score0.00273EPSS
Exploits0References2
OSV
OSVadded 2025/06/13 7:15 a.m.2 views

UBUNTU-CVE-2024-38822

Multiple methods in the salt master skip minion token validation. Therefore a misbehaving minion can impersonate another minion...

2.7CVSS5.8AI score0.00273EPSS
Exploits0References4
Cvelist
Cvelistadded 2025/06/13 7:0 a.m.14 views

CVE-2025-22239 CVE-2025-22239 salt advisory

Arbitrary event injection on Salt Master. The master's "minionevent" method can be used by and authorized minion to send arbitrary events onto the master's event bus...

8.1CVSS0.00144EPSS
Exploits0References2
CVE
CVEadded 2025/06/13 7:0 a.m.64 views

CVE-2025-22239

CVE-2025-22239 – Salt Master event injection : The Salt Master’s _minion_event method can be abused by an authorized minion to push arbitrary events onto the master's event bus, enabling potential impact on integrity and confidentiality (I, C) with low availability impact. The advisory notes this...

8.1CVSS8.3AI score0.00144EPSS
Exploits0References2
CVE
CVEadded 2025/06/13 6:40 a.m.76 views

CVE-2024-38822

CVE-2024-38822 concerns Salt (Salt Master/Minion interaction): multiple methods in the Salt master skip minion token validation, enabling a misbehaving minion to impersonate another. Evidence from connected advisories shows patches fixing Minion token validation and related Salt issues (e.g., SUS...

2.7CVSS3.7AI score0.00273EPSS
Exploits0References2
NVD
NVDadded 2024/06/27 7:15 a.m.16 views

CVE-2024-22231

Syndic cache directory creation is vulnerable to a directory traversal attack in salt project which can lead a malicious attacker to create an arbitrary directory on a Salt master...

5CVSS0.0058EPSS
Exploits0References1
OSV
OSVadded 2024/06/27 7:15 a.m.13 views

CVE-2024-22232

A specially crafted url can be created which leads to a directory traversal in the salt file server. A malicious user can read an arbitrary file from a Salt master’s filesystem...

7.7CVSS7.2AI score0.00439EPSS
Exploits0References3Affected Software1
OSV
OSVadded 2024/06/27 7:15 a.m.26 views

CVE-2024-22231

Syndic cache directory creation is vulnerable to a directory traversal attack in salt project which can lead a malicious attacker to create an arbitrary directory on a Salt master...

5CVSS5.1AI score0.0058EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCveadded 2024/06/27 7:15 a.m.15 views

CVE-2024-22231

Syndic cache directory creation is vulnerable to a directory traversal attack in salt project which can lead a malicious attacker to create an arbitrary directory on a Salt master...

5CVSS6AI score0.0058EPSS
Exploits0References2
AlpineLinux
AlpineLinuxadded 2024/06/27 6:51 a.m.27 views

CVE-2024-22231

Syndic cache directory creation is vulnerable to a directory traversal attack in salt project which can lead a malicious attacker to create an arbitrary directory on a Salt master...

5CVSS5.8AI score0.0058EPSS
Exploits0
Cvelist
Cvelistadded 2024/06/27 6:51 a.m.24 views

CVE-2024-22231 Syndic cache directory creation is vulnerable to a directory traversal attack

Syndic cache directory creation is vulnerable to a directory traversal attack in salt project which can lead a malicious attacker to create an arbitrary directory on a Salt master...

5CVSS0.0058EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/06/27 6:51 a.m.21 views

CVE-2024-22231 Syndic cache directory creation is vulnerable to a directory traversal attack

Syndic cache directory creation is vulnerable to a directory traversal attack in salt project which can lead a malicious attacker to create an arbitrary directory on a Salt master...

5CVSS6.7AI score0.0058EPSS
Exploits0References1
Rows per page
Query Builder