CNNVD-202601-5049 Information
Jan 30, 2026
cve
CNNVD ID
CNNVD-202601-5049
Related CVE
- CNNVD Published: 2026-01-30
Description (Chinese)
Salt是Salt项目的一个自动化、基础设施管理、数据驱动编排和远程执行应用程序。 Salt存在安全漏洞,该漏洞源于junos执行模块包含不安全的YAML解码/加载使用,可能导致处理特制YAML有效载荷时在Salt进程上下文中执行意外代码。
Description (English)
Salt is an automation, infrastructure management, data-driven organization and remote implementation application for the Salt project. There is a security loophole in Salt, which stems from the fact that the Junos implementation module contains unsafe YAML decoded/mounted use, which may lead to the implementation of an unexpected code in the context of the Salt process when handling a special YAML payload.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Salt
Published
2026-01-30
Last Modified
2026-02-24
References
https://docs.saltproject.io/en/latest/topics/releases/3006.17.html
Patch
https://docs.saltproject.io/en/latest/topics/releases/3006.17.html
Share on: