| Max CVSS | 9.0 | Min CVSS | 6.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-5200 | 9.0 |
Salt-api in SaltStack Salt before 2015.8.13, 2016.3.x before 2016.3.5, and 2016.11.x before 2016.11.2 allows arbitrary command execution on a salt-master via Salt's ssh_client.
|
03-10-2019 - 00:03 | 26-09-2017 - 14:29 | |
| CVE-2017-5192 | 6.5 |
When using the local_batch client from salt-api in SaltStack Salt before 2015.8.13, 2016.3.x before 2016.3.5, and 2016.11.x before 2016.11.2, external authentication is not respected, enabling all authentication to be bypassed.
|
06-10-2017 - 18:46 | 26-09-2017 - 14:29 |