Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:5259
HistoryOct 11, 2017 - 2:38 a.m.

Information Disclosure

2017-10-1102:38:51
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7

0.001 Low

EPSS

Percentile

25.3%

salt is vulnerable to information disclosure. The application logs user credentials when the git clone command is used, allowing a malicious user with access to logs to gain access to other user credentials.

CPENameOperatorVersion
saltle2015.5.4