Salt junos Module Vulnerable to Code Injection via Specially Crafted YAML Payload

GHSA-77w2-v593-vxvv · CVE-2025-62348

Published Jan 30, 2026 · Modified Feb 3, 2026

Description

Salt's junos execution module contained an unsafe YAML decode/load usage. A specially crafted YAML payload processed by the junos module could lead to unintended code execution under the context of the Salt process.

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2025-62348
WEB https://github.com/saltstack/salt/issues/68469
WEB https://github.com/saltstack/salt/pull/68472/commits/c17fd645edef208233dcac855615fced69409a00
WEB https://docs.saltproject.io/en/latest/topics/releases/3006.17.html
PACKAGE https://github.com/saltstack/salt

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes