CVE-2016-9639

CVE-2016-9639

EPSS 2.6%

Salt before 2015.8.11 allows deleted minions to read or write to minions with the same id, related to caching.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://docs.saltstack.com/en/2015.8/ref/configuration/master.html#rotate-aes-key http://www.openwall.com/lists/oss-security/2016/11/25/2 http://www.openwall.com/lists/oss-security/2016/11/25/3 http://www.securityfocus.com/bid/94553