CVE-2021-25281 – An issue was discovered in through SaltStack Salt before 3002.5. salt-api does not honor e …

27 February 2021

Vuln ID: CVE-2021-25281

Published: 2021-02-27 05:15:13Z

Description: An issue was discovered in through SaltStack Salt before 3002.5. salt-api does not honor eauth credentials for the wheel_async client. Thus, an attacker can remotely run any wheel modules on the master.

Source: NVD.NIST.GOV

Date:

27 February 2021

Categorie(s):

NVD

Tag(s):

NVD

Network Threats: A Step-by-Step Attack Demonstration25 April 2024
ESET integrates with Arctic Wolf to provide greater security visibility25 April 2024
JudgeO Online Code Editor Flaw Let Attackers Execute Code as Root User25 April 2024
Sublime Security secures $20 million to strengthen cloud email security and visibility25 April 2024
DragonForce Ransomware Group Uses LockBit’s Leaked Builder25 April 2024