Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

45 matches found

VulnCheck KEV
VulnCheck KEVadded 2026/01/14 12:0 a.m.22 views

VulnCheck KEV: CVE-2021-25281

An issue was discovered in through SaltStack Salt before 3002.5. salt-api does not honor eauth credentials for the wheelasync client. Thus, an attacker can remotely run any wheel modules on the master...

9.8CVSS5.8AI score0.72945EPSS
In wildExploits5References2
RedhatCVE
RedhatCVEadded 2026/01/09 11:27 a.m.6 views

CVE-2021-33226

Buffer Overflow vulnerability in Saltstack v.3003 and before allows attacker to execute arbitrary code via the func variable in salt/salt/modules/status.py file. NOTE: this is disputed by third parties because an attacker cannot influence the eval input...

9.8CVSS7.7AI score0.01642EPSS
Exploits1References1
CNNVD
CNNVDadded 2025/11/20 12:0 a.m.2 views

SaltStack Salt 安全漏洞

SaltStack Salt is a set of open-source tools developed by SaltStack Corporation for managing infrastructure. This tool offers features such as configuration management and remote execution. There is a security vulnerability in SaltStack Salt, which stems from a degradation of the authentication...

7.5CVSS5.9AI score0.00407EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2017-0123

Malware in sbrugna...

9CVSS8.6AI score0.03205EPSS
Exploits0References9
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2021-0226

Malware in sbrugna...

6.4CVSS7.7AI score0.00354EPSS
Exploits0References14
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2013-0034

Malware in sbrugna...

6CVSS6.1AI score0.01515EPSS
Exploits0References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2017-0126

Malware in sbrugna...

7.8CVSS7.7AI score0.00431EPSS
Exploits0References10
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2013-0035

Malware in sbrugna...

7.5CVSS6.2AI score0.02098EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2017-0113

Malware in sbrugna...

5.3CVSS5.3AI score0.00428EPSS
Exploits0References8
EUVD
EUVDadded 2025/10/07 12:30 a.m.5 views

EUVD-2017-0121

Malware in sbrugna...

7.5CVSS8.5AI score0.02739EPSS
Exploits0References13
Tenable Nessus
Tenable Nessusadded 2025/09/10 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2019-1010259

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SaltStack Salt 2018.3, 2019.2 is affected by: SQL Injection. The impact is: An attacker could escalate privileges on MySQL server deployed by cloud provider. It...

9.8CVSS8.3AI score0.01883EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/09/05 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2022-22935

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in SaltStack Salt in versions before 3002.8, 3003.4, 3004.1. A minion authentication denial of service can cause a MiTM attacker to forc...

4.3CVSS6.7AI score0.01586EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/09/04 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-22967

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in SaltStack Salt in versions before 3002.9, 3003.5, 3004.2. PAM auth fails to reject locked accounts, which allows a previously...

8.8CVSS8.1AI score0.01878EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/09/03 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2021-25282

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in through SaltStack Salt before 3002.5. The salt.wheel.pillarroots.write method is vulnerable to directory traversal. CVE-2021-25282 No...

9.1CVSS7.2AI score0.92312EPSS
Exploits5References2
Tenable Nessus
Tenable Nessusadded 2025/09/03 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2017-5192

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When using the localbatch client from salt-api in SaltStack Salt before 2015.8.13, 2016.3.x before 2016.3.5, and 2016.11.x before 2016.11.2, external...

8.8CVSS7.7AI score0.01681EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/09/02 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2022-22941

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in SaltStack Salt in versions before 3002.8, 3003.4, 3004.1. When configured as a Master-of-Masters, with a publisheracl, if a user...

8.8CVSS6.8AI score0.01315EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/09/02 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2017-7893

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In SaltStack Salt before 2016.3.6, compromised salt-minions can impersonate the salt-master. CVE-2017-7893 Note that Nessus relies on the presence of the packag...

9.8CVSS8.2AI score0.014EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/09/02 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2020-35662

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In SaltStack Salt before 3002.5, when authenticating to services using certain modules, the SSL certificate is not always validated. CVE-2020-35662 Note that...

7.4CVSS7.1AI score0.02954EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/09/02 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-22934

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in SaltStack Salt in versions before 3002.8, 3003.4, 3004.1. Salt Masters do not sign pillar data with the minion's public key, which ca...

8.8CVSS6.9AI score0.00861EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/09/02 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2022-22936

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in SaltStack Salt in versions before 3002.8, 3003.4, 3004.1. Job publishes and file server replies are susceptible to replay attacks,...

8.8CVSS6.8AI score0.00808EPSS
Exploits0References2
Rows per page
Query Builder