CNNVD-202506-1756 Information
Jun 13, 2025
cve
CNNVD ID
CNNVD-202506-1756
Related CVE
- CNNVD Published: 2025-06-13
Description (Chinese)
Salt是Salt项目的一个自动化、基础设施管理、数据驱动编排和远程执行应用程序。 Salt存在安全漏洞,该漏洞源于特制git URL可能触发主进程执行任意命令。
Description (English)
Salt is an automation, infrastructure management, data-driven organization and remote implementation application for the Salt project. There was a security loophole in Salt, which stemmed from the possibility that a specially designed Git URL could trigger the main process to enforce arbitrary orders.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Salt
Published
2025-06-13
Last Modified
2026-02-24
References
https://docs.saltproject.io/en/3006/topics/releases/3006.12.html https://docs.saltproject.io/en/3007/topics/releases/3007.4.html
Patch
https://packages.broadcom.com/artifactory/saltproject-generic/
Share on: