Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

samedi 27 février 2021

SaltStack Salt prior 3002.5 API salt/utils/thin.py salt.utils.thin.gen_thin command injection

A vulnerability, which was classified as critical, was found in SaltStack Salt. Affected is the function salt.utils.thin.gen_thin of the file salt/utils/thin.py of the component API. Upgrading to version 3002.5 eliminates this vulnerability. The upgrade is hosted for download at saltproject.io.

Lien vers l'article source

Auteur: VulDB

Catégories: VulDBNombre de vues: 187

x

Événements SSI