CNNVD-202506-1764 Information

CNNVD ID

CNNVD-202506-1764

Related CVE

CVE-2024-38824

• CNNVD Published: 2025-06-13

Description (Chinese)

Salt是Salt项目的一个自动化、基础设施管理、数据驱动编排和远程执行应用程序。 Salt存在安全漏洞，该漏洞源于目录遍历，可能导致任意文件写入主缓存目录。

Description (English)

Salt is an automation, infrastructure management, data-driven organization and remote implementation application for the Salt project. There is a security loophole in Salt, which stems from a history of the directory and may lead to the inclusion of any document in the master cache directory.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Salt

Published

2025-06-13

Last Modified

2026-02-24

References

https://docs.saltproject.io/en/3006/topics/releases/3006.12.html https://docs.saltproject.io/en/3007/topics/releases/3007.4.html

Patch

https://packages.broadcom.com/artifactory/saltproject-generic/