Vulnerabilities
CVE-2015-6941
CVE-2015-6941
CVE-2017-14696
CVE-2017-14696
CVE-2017-14695
CVE-2017-14695
CVE-2015-6918
CVE-2015-6918
CVE-2015-1839
CVE-2015-1839
CVE-2015-1838
CVE-2015-1838
CVE-2023-20898
CVE-2023-20898
CVE-2022-22941
CVE-2022-22941
CVE-2023-20897
CVE-2023-20897
CVE-2022-22936
CVE-2022-22936
CVE-2022-22935
CVE-2022-22935
CVE-2022-22934
CVE-2022-22934
CVE-2020-28972
CVE-2020-28972
CVE-2020-35662
CVE-2020-35662
CVE-2021-25315
CVE-2021-25315
CVE-2020-28243
CVE-2020-28243
CVE-2021-3197
CVE-2021-3197
CVE-2021-3148
CVE-2021-3148
CVE-2021-25283
CVE-2021-25283
CVE-2021-3144
CVE-2021-3144
CVE-2021-25284
CVE-2021-25284
CVE-2021-25282
CVE-2021-25282
CVE-2021-25281
CVE-2021-25281
CVE-2019-17361
CVE-2019-17361
CVE-2020-17490
CVE-2020-17490
CVE-2020-25592
CVE-2020-25592
CVE-2020-16846
CVE-2020-16846
CVE-2020-11651
CVE-2020-11651
CVE-2020-11652
CVE-2020-11652
CVE-2019-1010259
CVE-2019-1010259
CVE-2018-15751
CVE-2018-15751
CVE-2017-7893
CVE-2017-7893
CVE-2018-15750
CVE-2018-15750
CVE-2017-5200
CVE-2017-5200
CVE-2017-5192
CVE-2017-5192
CVE-2017-12791
CVE-2017-12791
CVE-2017-8109
CVE-2017-8109
CVE-2015-4017
CVE-2015-4017
CVE-2013-4435
CVE-2013-4435
CVE-2016-3176
CVE-2016-3176
CVE-2016-9639
CVE-2016-9639
CVE-2015-8034
CVE-2015-8034
CVE-2013-6617
CVE-2013-6617
CVE-2016-1866
CVE-2016-1866
CVE-2014-3563
CVE-2014-3563
CVE-2013-4436
CVE-2013-4436
CVE-2013-4437
CVE-2013-4437
CVE-2017-12791
SaltStack Salt Directory traversal vulnerability in minion id validation
CVE-2017-12791
CVE-2017-12791
CVE-2025-62349
Salt Authentication Protocol Version Downgrade Allows Minion Impersonation
CVE-2025-62348
Salt junos Module Vulnerable to Code Injection via Specially Crafted YAML Payload
CVE-2020-16846
SaltStack Salt Command Injection in netapi ssh client
CVE-2020-11652
SaltStack Salt is vulnerable Arbitrary Directory Access
CVE-2025-22241
Salt's file contents overwrite the VirtKey class
CVE-2025-22240
Salt allows arbitrary directory creation or file deletion
CVE-2025-22236
Salt has minion event bus authorization bypass vulnerability
CVE-2024-38824
Salt vulnerable to directory traversal attack in file receiving method
CVE-2025-22242
Salt's worker process vulnerable to denial of service through file read operation
CVE-2025-22239
Salt vulnerable to arbitrary event injection
CVE-2025-22238
Salt vulnerable to directory traversal attack in minion file cache creation
CVE-2025-22237
Salt's on demand pillar functionality vulnerable to arbitrary command injections
CVE-2024-38825
Salt's salt.auth.pki module does not properly authenticate callers
CVE-2021-25315
Saltstack Salt Unauthenticated Arbitrary Code Execution
CVE-2023-20897
Salt vulnerable to denial of service
CVE-2023-20898
Salt can cause Git Providers to get wrong data
CVE-2013-6617
SaltStack Privilege Escalation vulnerability
CVE-2013-4439
Minion identity not validated in saltstack
CVE-2017-7893
SaltStack Salt allows compromised salt-minions to impersonate the salt-master
CVE-2017-5200
SaltStack Salt arbitrary command execution in Salt-api via ssh_client
CVE-2015-1838
Salt improper handling of tmp files
CVE-2015-1839
SaltStack has insecure /tmp file handling in salt/modules/chef.py
CVE-2014-3563
SaltStack Salt Insecure Temporary File Creation
CVE-2023-34049
Salt preflight script could be attacker controlled
CVE-2022-22967
Salt's PAM auth fails to reject locked accounts
CVE-2021-25282
SaltStack Salt Directory Traversal vulnerability
CVE-2020-11651
SaltStack Salt Unauthenticated Remote Code Execution
CVE-2021-22004
Improper Authentication in SaltStack Salt
CVE-2022-22934
SaltStack Improper Verification of Cryptographic Signature
CVE-2020-28972
SaltStack Salt Improper Certificate Validation
CVE-2013-4435
Salt has insufficient argument validation in several modules
CVE-2017-8109
SaltStack Salt Information Exposure
CVE-2013-4437
SaltStack insecurely uses /tmp
CVE-2013-4436
SaltStack MITM SSH attack in salt-ssh
CVE-2019-1010259
SaltStack Salt SQL Injection vulnerability in mysql.user_chpass function
CVE-2018-15751
SaltStack Salt Remote command execution and incorrect access control when using salt-api
CVE-2021-3197
SaltStack Salt is vulnerable to shell injection via ProxyCommand argument
CVE-2018-15750
SaltStack Salt Directory Traversal vulnerability in salt-api
CVE-2021-31607
Command Injection in SaltStack Salt
CVE-2021-25283
SaltStack Salt Server Side Template Injection
CVE-2021-25281
SaltStack Salt Improper Authentication vulnerability
CVE-2021-25284
SaltStack Salt Cleartext Storage of Sensitive Information via cmdmod
CVE-2021-3144
SaltStack Salt eauth tokens can be used once after expiration
CVE-2021-3148
SaltStack Salt command injection in the Salt-API when using the Salt-SSH client
CVE-2020-28243
SaltStack Salt command injection via a crafted process name
CVE-2020-35662
SaltStack Salt Improper SSL Certificate Validation
CVE-2019-17361
SaltStack Salt is vulnerable to command injection
CVE-2017-14696
SaltStack Salt Denial of Service via a crafted authentication request
CVE-2022-22941
SaltStack Salt Permissions Bypass
CVE-2020-25592
SaltStack Salt Improper Validation of eauth credentials and tokens in salt-netapi
CVE-2021-21996
Exposure of Resource to Wrong Sphere in salt
Ready to move
Start Securing
Free, no credit card | First findings in minutes