2 matches found
SaltStack Salt API SSH Client Command Injection (CVE-2020-16846)
A remote code execution vulnerability exists in SaltStack Salt API SSH Client. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
SaltStack Salt API Arbitrary Code Execution Vulnerability
SaltStack Salt is a set of open source tools for managing infrastructure from SaltStack. An input validation vulnerability exists in the SaltStack Salt API that can be exploited by a remote attacker to submit a special request for unauthorized access to arbitrary code...