CVE-2025-22238 Information

Description

Directory traversal attack in minion file cache creation. The master’s default cache is vulnerable to a directory traversal attack. Which could be leveraged to write or overwrite ‘cache’ files outside of the cache directory.

Reference

https://docs.saltproject.io/en/3006/topics/releases/3006.12.html https://docs.saltproject.io/en/3007/topics/releases/3007.4.html

Related CNNVD

CNNVD-202506-1763 (Published: 2025-06-13)