Salt-api in SaltStack Salt prior to 2015.8.13, 2016.3.x prior to 2016.3.5, and 2016.11.x prior to 2016.11.2 allows arbitrary command execution on a salt-master via Salt's ssh_client.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
saltstack salt 2016.11.0 |
||
saltstack salt 2016.3.4 |
||
saltstack salt 2016.11.2 |
||
saltstack salt 2016.3.0 |
||
saltstack salt 2016.3.1 |
||
saltstack salt 2016.3.2 |
||
saltstack salt 2016.11.1 |
||
saltstack salt 2016.3.3 |
||
saltstack salt |
Vulmon