Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

27 matches found

Tenable Nessus
Tenable Nessusadded 2026/04/13 12:0 a.m.2 views

Ubuntu 14.04 LTS : Salt vulnerabilities (USN-8153-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8153-1 advisory. Zach Malone discovered that Salt did not properly handle permissions to cache data. A local attacker could possibly use this issue to obtain sensitive...

5.6CVSS5.9AI score0.00167EPSS
Exploits0References3
OSV
OSVadded 2026/04/07 2:5 p.m.4 views

USN-8153-1 salt vulnerabilities

Zach Malone discovered that Salt did not properly handle permissions to cache data. A local attacker could possibly use this issue to obtain sensitive information. CVE-2015-8034 Dylan Frese discovered that Salt incorrectly allowed users to specify PAM service. An attacker could possibly use this...

5.6CVSS5.8AI score0.00167EPSS
Exploits0References3
OPENSUSE Linux
OPENSUSE Linuxadded 2026/03/28 12:0 a.m.1 views

Security update for salt (important)

openSUSE security update: security update for salt ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20412-1 Rating: important References: bsc1240532 bsc1246130 bsc1254325 bsc1254903 bsc1254904 bsc1254905 Cross-References: CVE-2025-13836 CVE-2025-6772...

8.7CVSS6.9AI score0.00215EPSS
Exploits0References6
Tenable Nessus
Tenable Nessusadded 2026/03/26 12:0 a.m.3 views

SUSE SLES15 / openSUSE 15 Security Update : salt (SUSE-SU-2026:1029-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1029-1 advisory. - Security issues fixed: CVE-2025-67724: Fixed missing validation of supplied reason phrase bsc1254903 CVE-2025-67725...

7.5CVSS6.8AI score0.00215EPSS
Exploits0References16
Tenable Nessus
Tenable Nessusadded 2026/03/26 12:0 a.m.2 views

SUSE SLES15 Security Update : salt (SUSE-SU-2026:1028-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1028-1 advisory. - Security issues fixed: CVE-2025-67724: Fixed missing validation of supplied reason phrase bsc1254903 CVE-2025-67725: Fixed DoS vi...

7.5CVSS6.8AI score0.00215EPSS
Exploits0References16
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2013-0036

Malware in sbrugna...

4.9CVSS6.1AI score0.00193EPSS
Exploits0References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.5 views

EUVD-2014-0103

Malware in sbrugna...

7.2CVSS9.3AI score0.0014EPSS
Exploits0References9
SUSE Linux
SUSE Linuxadded 2025/07/23 1:26 p.m.5 views

Security update 5.0.5 for Multi-Linux Manager Client Tools, Salt and Salt Bundle

This update fixes the following issues: golang-github-prometheus-nodeexporter: Security issues fixed: CVE-2025-22870: Prevent a matching of hosts against proxy patterns to improperly treat an IPv6 zone ID as a hostname component bsc1238686 Other bugs fixed: Fixed Darwin memory leak pressure: Fix...

9.6CVSS7.3AI score0.01164EPSS
Exploits2References76
SUSE Linux
SUSE Linuxadded 2025/07/23 12:41 p.m.6 views

Security update 5.0.5 for Multi-Linux Manager Client Tools

This update fixes the following issues: salt: Security issues fixed: CVE-2024-38822: Fixed Minion token validation bsc1244561 CVE-2024-38823: Fixed server vulnerability to replay attacks when not using a TLS encrypted transport bsc1244564 CVE-2024-38824: Fixed directory traversal vulnerability in...

9.6CVSS7.5AI score0.01164EPSS
Exploits0References74
Tenable Nessus
Tenable Nessusadded 2025/06/19 12:0 a.m.4 views

Fedora 43 : salt (2025-551aed076e)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-551aed076e advisory. Automatic update for salt-3007.4-2.fc43. Changelog Thu Jun 19 2025 Robby Callicotte - 3007.4-2 - Updated sources Thu Jun 19 2025 Robby Callicotte -...

9.6CVSS5.6AI score0.00378EPSS
Exploits0References7
Tenable Nessus
Tenable Nessusadded 2024/12/09 12:0 a.m.7 views

GLSA-202412-09 : Salt: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202412-09 Salt: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in Salt. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description block directly from th...

7.8CVSS6.7AI score0.0058EPSS
Exploits0References8
Gentoo Linux
Gentoo Linuxadded 2024/12/07 12:0 a.m.12 views

Salt: Multiple Vulnerabilities

Background Salt is a fast, intelligent and scalable automation engine. Description Multiple vulnerabilities have been discovered in Salt. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known...

7.8CVSS7.5AI score0.0058EPSS
Exploits0
Ubuntu
Ubuntuadded 2024/08/08 7:21 p.m.33 views

USN-6948-1: Salt vulnerabilities

It was discovered that Salt incorrectly handled crafted web requests. A remote attacker could possibly use this issue to run arbitrary commands. CVE-2020-16846 It was discovered that Salt incorrectly created certificates with weak file permissions. CVE-2020-17490 It was discovered that Salt...

9.8CVSS7.3AI score0.94387EPSS
Exploits13
OSV
OSVadded 2024/06/25 7:30 p.m.1 views

USN-6849-1 salt vulnerabilities

It was discovered that Salt incorrectly validated method calls and sanitized paths. A remote attacker could possibly use this issue to access some methods without authentication. CVE-2020-11651, CVE-2020-11652...

9.8CVSS7.3AI score0.94234EPSS
Exploits24References3
Tenable Nessus
Tenable Nessusadded 2023/10/20 12:0 a.m.25 views

Ubuntu 16.04 ESM : Salt vulnerabilities (USN-4769-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4769-1 advisory. It was discovered that Salt allowed remote attackers to write to arbitrary files via a special crafted file. An attacker could use this vulnerability to...

9.8CVSS8.1AI score0.01854EPSS
Exploits0References9
OSV
OSVadded 2023/09/28 11:40 a.m.6 views

SUSE-SU-2023:3864-1 Security update for salt

This update for salt fixes the following issues: Security issues fixed: - CVE-2023-20897: Fixed DOS in minion return. bsc1214796, bsc1213441 - CVE-2023-20898: Fixed Git Providers can read from the wrong environment because they get the same cache directory base name. bsc1214797, bsc1193948 Bugs...

7.8CVSS6.1AI score0.00175EPSS
Exploits0References15
OSV
OSVadded 2022/03/30 4:1 p.m.7 views

SUSE-SU-2022:1058-1 Security update for salt

This update for salt fixes the following issues: - CVE-2022-22935: Sign authentication replies to prevent MiTM bsc1197417 - CVE-2022-22934: Sign pillar data to prevent MiTM attacks. bsc1197417 - CVE-2022-22936: Prevent job and fileserver replays bsc1197417 - CVE-2022-22941: Fixed targeting bug,...

8.8CVSS6.2AI score0.0012EPSS
Exploits0References6
OSV
OSVadded 2022/03/30 3:33 p.m.9 views

SUSE-SU-2022:1060-1 Security update for salt

This update for salt fixes the following issues: - CVE-2022-22935: Sign authentication replies to prevent MiTM bsc1197417 - CVE-2022-22934: Sign pillar data to prevent MiTM attacks. bsc1197417 - CVE-2022-22936: Prevent job and fileserver replays bsc1197417 - CVE-2022-22941: Fixed targeting bug,...

8.8CVSS6.2AI score0.0012EPSS
Exploits0References6
OSV
OSVadded 2022/03/30 3:33 p.m.8 views

OPENSUSE-SU-2022:1059-1 Security update for salt

This update for salt fixes the following issues: - CVE-2022-22935: Sign authentication replies to prevent MiTM bsc1197417 - CVE-2022-22934: Sign pillar data to prevent MiTM attacks. bsc1197417 - CVE-2022-22936: Prevent job and fileserver replays bsc1197417 - CVE-2022-22941: Fixed targeting bug,...

8.8CVSS6.3AI score0.0012EPSS
Exploits0References6
Tenable Nessus
Tenable Nessusadded 2020/08/18 12:0 a.m.63 views

Ubuntu 16.04 LTS / 18.04 LTS : Salt vulnerabilities (USN-4459-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4459-1 advisory. It was discovered that Salt allows remote attackers to determine which files exist on the server. An attacker could use that to extract...

9.8CVSS8.6AI score0.94234EPSS
Exploits24References6
Rows per page
Query Builder