7 matches found
applier (>=0.1.0 <=0.4.0), elita (>=0.60.0 <=0.64.1) +1 more potentially affected by CVE-2025-62348 via salt (>=2014.1.10 <=3005.5.0)
salt PYPI version =2014.1.10, =0.1.0, =0.60.0, =2020.1.1, =2020.9.0 Source cves: CVE-2025-62348 Source advisory: OSV:GHSA-77W2-V593-VXVV...
CVE-2025-62348
creationtimestamp| type| source ---|---|--- 2026-01-30 19:17:45+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mdnzdytkn52x 2026-01-30 19:18:06+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mdnzemfold25...
SUSE: Security Advisory (SUSE-SU-2025:4477-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2025:4475-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2025:4449-1 Security update 5.1.1.1 for Multi-Linux Manager Client Tools
This update fixes the following issues: venv-salt-minion: - Security issues fixed: - CVE-2025-62349: Added minimumauthversion to enforce security bsc1254257 - CVE-2025-62348: Fixed Junos module yaml loader bsc1254256 - Backport security fixes for vendored tornado BDSA-2024-3438 BDSA-2024-3439...
SUSE-SU-2025:21216-1 Security update 5.0.6 for Multi-Linux Manager Client Tools, Salt and Salt Bundle
This update fixes the following issues: salt: - Security issues fixed: - CVE-2025-62349: Added minimumauthversion to enforce security bsc1254257 - CVE-2025-62348: Fixed Junos module yaml loader bsc1254256 - Backport security fixes for vendored tornado BDSA-2024-3438 BDSA-2024-3439 BDSA-2024-9026 ...
SUSE CVE-2025-62348
Salt's junos execution module contained an unsafe YAML decode/load usage. A specially crafted YAML payload processed by the junos module could lead to unintended code execution under the context of the Salt process...