Количество 12
Количество 12
BDU:2025-10847
Уязвимость метода pub_ret системы управления конфигурациями и удалённого выполнения операций Salt, позволяющая нарушителю вызвать отказ в обслуживании
CVE-2025-22242
Worker process denial of service through file read operation. .A vulnerability exists in the Master's “pub_ret” method which is exposed to all minions. The un-sanitized input value “jid” is used to construct a path which is then opened for reading. An attacker could exploit this vulnerabilities by attempting to read from a filename that will not return any data, e.g. by targeting a pipe node on the proc file system.
CVE-2025-22242
Worker process denial of service through file read operation. .A vulnerability exists in the Master's “pub_ret” method which is exposed to all minions. The un-sanitized input value “jid” is used to construct a path which is then opened for reading. An attacker could exploit this vulnerabilities by attempting to read from a filename that will not return any data, e.g. by targeting a pipe node on the proc file system.
CVE-2025-22242
Worker process denial of service through file read operation. .A vulne ...
ROS-20250819-13
Множественные уязвимости salt
ROS-20250819-12
Множественные уязвимости salt3006
ROS-20250819-11
Множественные уязвимости python3-zmq
GHSA-989c-m532-p2hv
Salt's worker process vulnerable to denial of service through file read operation
SUSE-SU-2025:02534-1
Security update for salt
SUSE-SU-2025:02502-1
Security update for salt
SUSE-SU-2025:02501-1
Security update for salt
SUSE-SU-2025:02500-1
Security update for salt
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2025-10847 Уязвимость метода pub_ret системы управления конфигурациями и удалённого выполнения операций Salt, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 5.6 | 0% Низкий | около 1 года назад |
 | CVE-2025-22242 Worker process denial of service through file read operation. .A vulnerability exists in the Master's “pub_ret” method which is exposed to all minions. The un-sanitized input value “jid” is used to construct a path which is then opened for reading. An attacker could exploit this vulnerabilities by attempting to read from a filename that will not return any data, e.g. by targeting a pipe node on the proc file system. | CVSS3: 5.6 | 0% Низкий | 7 месяцев назад |
 | CVE-2025-22242 Worker process denial of service through file read operation. .A vulnerability exists in the Master's “pub_ret” method which is exposed to all minions. The un-sanitized input value “jid” is used to construct a path which is then opened for reading. An attacker could exploit this vulnerabilities by attempting to read from a filename that will not return any data, e.g. by targeting a pipe node on the proc file system. | CVSS3: 5.6 | 0% Низкий | 7 месяцев назад |
| CVE-2025-22242 Worker process denial of service through file read operation. .A vulne ... | CVSS3: 5.6 | 0% Низкий | 7 месяцев назад |
 | ROS-20250819-13 Множественные уязвимости salt | CVSS3: 8.1 | 5 месяцев назад | |
| ROS-20250819-12 Множественные уязвимости salt3006 | CVSS3: 8.1 | 5 месяцев назад | |
| ROS-20250819-11 Множественные уязвимости python3-zmq | CVSS3: 8.1 | 5 месяцев назад | |
| GHSA-989c-m532-p2hv Salt's worker process vulnerable to denial of service through file read operation | CVSS3: 5.6 | 0% Низкий | 7 месяцев назад |
 | SUSE-SU-2025:02534-1 Security update for salt | 6 месяцев назад | ||
| SUSE-SU-2025:02502-1 Security update for salt | 6 месяцев назад | ||
| SUSE-SU-2025:02501-1 Security update for salt | 6 месяцев назад | ||
| SUSE-SU-2025:02500-1 Security update for salt | 6 месяцев назад |
Уязвимостей на страницу