Описание
Minion event bus authorization bypass. An attacker with access to a minion key can craft a message which may be able to execute a job on other minions (>= 3007.0).
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-apps/bionic | needs-triage | |
| esm-apps/jammy | needs-triage | |
| esm-apps/xenial | needs-triage | |
| esm-infra-legacy/trusty | needs-triage | |
| jammy | needs-triage | |
| noble | DNE | |
| oracular | DNE | |
| plucky | DNE | |
| upstream | needs-triage |
Показывать по
10
EPSS
Процентиль: 5%
0.00025
Низкий
8.1 High
CVSS3
Связанные уязвимости
CVSS3: 8.1
nvd
3 месяца назад
Minion event bus authorization bypass. An attacker with access to a minion key can craft a message which may be able to execute a job on other minions (>= 3007.0).
CVSS3: 8.1
debian
3 месяца назад
Minion event bus authorization bypass. An attacker with access to a mi ...
CVSS3: 8.1
github
3 месяца назад
Salt has minion event bus authorization bypass vulnerability
EPSS
Процентиль: 5%
0.00025
Низкий
8.1 High
CVSS3