CVE-2024-22231

Syndic cache directory creation is vulnerable to a directory traversal attack

CVSS 5 MEDIUMEPSS 0.7%CWE-22

Syndic cache directory creation is vulnerable to a directory traversal attack in salt project which can lead a malicious attacker to create an arbitrary directory on a Salt master.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N

Produtos afetados

VMware · Salt Project

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://saltproject.io/security-announcements/2024-01-31-advisory/