Lucene search
GoogleOSV:GHSA-VQH4-CRJF-JJXXHistoryMay 14, 2022 - 2:11 a.m.
Salt Improper Access Control
2022-05-1402:11:54
Google
osv.dev
5
salt
improper access control
2015.8.x
arbitrary code
data stream
man-in-the-middle
EPSS
0.002
Percentile
52.5%
Salt 2015.8.x before 2015.8.4 does not properly handle clear messages on the minion, which allows man-in-the-middle attackers to execute arbitrary code by inserting packets into the minion-master data stream.
Related
veracode
veracode
Remote Code Execution (RCE)
2017-02-14 07:39:00
github
github
Salt Improper Access Control
2022-05-14 02:11:54
cvelist
cvelist
CVE-2016-1866
2016-04-12 14:00:00
nvd
nvd
CVE-2016-1866
2016-04-12 14:59:09
osv
osv
PYSEC-2016-23
2016-04-12 14:59:00
prion
prion
Code injection
2016-04-12 14:59:00
freebsd
freebsd
salt -- code execution
2016-01-25 00:00:00
ubuntucve
ubuntucve
CVE-2016-1866
2016-04-12 00:00:00
nessus
nessus
openSUSE Security Update : salt (openSUSE-2016-318)
2016-03-10 00:00:00
FreeBSD : salt -- code execution (0652005e-ca96-11e5-96d6-14dae9d210b8)
2016-02-04 00:00:00
cve
cve
CVE-2016-1866
2016-04-12 14:59:09
debiancve
debiancve
CVE-2016-1866
2016-04-12 14:59:09