The vulnerability of the implementation of the salt.wheel.pillar_roots.write method in the configuration management system and remote execution of SaltStack Salt operations allows a perpetrator to disclose sensitive information.
The vulnerability of the salt.wheel.pillarroots.write method in the configuration management system and remote execution of SaltStack Salt is related to an incorrect limitation on the path name to the restricted directory. Exploiting this vulnerability could allow a malicious actor to expose...