salt vulnerabilities

Portable, distributed, remote execution and configuration management system

latest version

3007.1

first published

13 years ago

latest version published

7 months ago

licenses detected

Apache-2.0
[0,)

View salt package health on Snyk Advisor (opens in a new tab)

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the salt package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
H Inadequate Encryption Strength	[,0.15.1)
H Directory Traversal	[,3005.5)
H Directory Traversal	[,3005.5)
M Improper Access Control	[,3005.4)[3006.0rc1,3006.4)
M Information Exposure	[,3005.2)[3006.0rc1,3006.2)
H Denial of Service (DoS)	[,3005.2)[3006.0rc1,3006.2)
M Insecure Defaults	[0.17.0,0.17.1)
H Buffer Overflow	[0,)
H Denial of Service (DoS)	[,3004.1)
H Access Restriction Bypass	[,3002.9)[3003,3003.5)[3004,3004.2)
H Improper Access Control	[,3002.8)[3003,3003.4)[3004,3004.1)
M Denial of Service (DoS)	[,3002.8)[3003,3003.4)[3004,3004.1)
H Access Restriction Bypass	[,3002.8)[3003,3003.4)[3004,3004.1)
M Authentication Bypass	[,3002.8)[3003,3003.4)[3004,3004.1)
C SQL Injection	[,2018.3.4)[2019.2.0,2019.2.1)
H Privilege Escalation	[,3001.8)[3002rc1,3002.7)[3003rc1,3003.3)
M Privilege Escalation	[,3001.8)[3002rc1,3002.7)[3003rc1,3003.3)
H Command Injection	[2016.11.0rc1,3003rc1)
H Command Injection	[3002rc1,3002.5)[3001rc1,3001.6)[,3000.8)
H Improper Authorization	[3002rc1,3002.5)[3001rc1,3001.6)[,3000.8)
M Directory Traversal	[3002rc1,3002.5)[3001rc1,3001.6)[,3000.8)
H Server-side Template Injection (SSTI)	[3002rc1,3002.5)[3001rc1,3001.6)[,3000.8)
M Command Injection	[3002rc1,3002.5)[3001rc1,3001.6)[,3000.8)
M Sensitive Data Exposure	[3002rc1,3002.5)[3001rc1,3001.6)[,3000.8)
H Man-in-the-Middle (MitM)	[3002rc1,3002.5)[3001rc1,3001.6)[,3000.8)
M Sensitive Data Exposure	[3002rc1,3002.5)[3001rc1,3001.6)[,3000.8)
M Local Privilege Escalation	[3002rc1,3002.5)[3001rc1,3001.6)[,3000.8)
H Improper Certificate Validation	[3002rc1,3002.5)[3001rc1,3001.6)[,3000.8)
H Remote Code Execution (RCE)	[,3000.4)[3001,3001.2)
H Authentication Bypass	[3002,3002.1)
M Improper Access Control	[,3000.4)[3001,3001.2)[3002,3002.1)
H Directory Traversal	[,2019.2.4)[3000,3000.2)
C Arbitrary Code Execution	[,2019.2.4)[3000,3000.2)
M Command Injection	[2019.2.0,2019.2.3)
H Arbitrary Code Execution	[,0.17.1)
M Directory Traversal	[,2017.7.8)[2018.0,2018.3.3)
H Arbitrary Command Execution	[,2017.7.8)[2018.0.0,2018.3.3)
H Arbitrary YAML Code Execution	[,0.17.1)
C Information Exposure	[2015.5.0,2015.5.6)[2015.8.0,2015.8.1)
C Directory Traversal	[,2016.11.7)[2017.7.0,2017.7.1)
H Credential Exposure	[,2016.11.4)
C Privilege Escalation	[,0.17.1)
M Client Impersonation	[0.15,0.17.1)
M Arbitrary Routine Execution	[,0.17.1)
M Authentication Bypass	[,2015.5.10)[2015.8.0,2015.8.8)
C Client Impersonation	[,2016.3.6)
H Arbitrary File Creation	[,2014.1.10)
M Insecure use of /tmp folder	[,2014.7.4)
M Information Exposure	[,2015.5.5)
H Arbitrary Code Execution	[,2015.8.13)[2016.3,2016.3.5)[2016.11,2016.11.2)
H Arbitrary Code Execution	[,2015.8.12)[2016.3,2016.3.5)[2016.11,2016.11.2)
H Authentication Bypass	[2015.5,2015.5.6)[2015.8,2015.8.1)
H Denial of Service (DoS)	[2017.7.0,2017.7.2)[2016.11.0,2016.11.8)[2016.3.0,2016.3.8)
C Directory Traversal	[2017.7.0,2017.7.2)[2016.11.0,2016.11.8)[2016.3.0,2016.3.8)
C Information Exposure	[,2015.8.11)
H Arbitrary Code Execution	[2015.8,2015.8.4)
L Information Exposure	[,2015.8.3)
M Insecure Temporary File	[,2014.7.4)

Package versions

1 - 100 of 231 Results

version	published	direct vulnerabilities
3007.1	22 May, 2024	0 C 1 H 0 M 0 L
3007.0	6 Mar, 2024	0 C 1 H 0 M 0 L
3007.0rc1	8 Jan, 2024	0 C 1 H 0 M 0 L
3006.9	30 Jul, 2024	0 C 1 H 0 M 0 L
3006.8	30 Apr, 2024	0 C 1 H 0 M 0 L
3006.7	21 Feb, 2024	0 C 1 H 0 M 0 L
3006.6	31 Jan, 2024	0 C 1 H 0 M 0 L
3006.5	12 Dec, 2023	0 C 1 H 0 M 0 L
3006.4	27 Oct, 2023	0 C 1 H 0 M 0 L
3006.3	7 Sep, 2023	0 C 1 H 1 M 0 L
3006.2	10 Aug, 2023	0 C 1 H 1 M 0 L
3006.1	5 May, 2023	0 C 2 H 2 M 0 L
3006.0	18 Apr, 2023	0 C 2 H 2 M 0 L
3006.0rc3	30 Mar, 2023	0 C 2 H 2 M 0 L
3006.0rc2	20 Mar, 2023	0 C 2 H 2 M 0 L
3006.0rc1	2 Mar, 2023	0 C 2 H 2 M 0 L
3005.5	31 Jan, 2024	0 C 1 H 0 M 0 L
3005.4	27 Oct, 2023	0 C 3 H 0 M 0 L
3005.3	21 Sep, 2023	0 C 3 H 1 M 0 L
3005.2	10 Aug, 2023	0 C 3 H 1 M 0 L
3005.1	4 Oct, 2022	0 C 4 H 2 M 0 L
3005	25 Aug, 2022	0 C 4 H 2 M 0 L
3005rc2	1 Aug, 2022	0 C 4 H 2 M 0 L
3005rc1	18 Jul, 2022	0 C 4 H 2 M 0 L
3004.2	21 Jun, 2022	0 C 4 H 2 M 0 L
3004.1	28 Mar, 2022	0 C 5 H 2 M 0 L
3004	18 Oct, 2021	0 C 8 H 4 M 0 L
3004rc1	1 Oct, 2021	0 C 5 H 2 M 0 L
3003.5	21 Jun, 2022	0 C 5 H 2 M 0 L
3003.4	28 Mar, 2022	0 C 6 H 2 M 0 L
3003.3	2 Sep, 2021	0 C 8 H 4 M 0 L
3003.2	11 Aug, 2021	0 C 9 H 5 M 0 L
3003.1	23 Jun, 2021	0 C 9 H 5 M 0 L
3003	31 Mar, 2021	0 C 9 H 5 M 0 L
3003rc1	8 Mar, 2021	0 C 6 H 3 M 0 L
3002.9	21 Jun, 2022	0 C 6 H 2 M 0 L
3002.8	28 Mar, 2022	0 C 7 H 2 M 0 L
3002.7	2 Sep, 2021	0 C 9 H 4 M 0 L
3002.6	23 Mar, 2021	0 C 10 H 5 M 0 L
3002.5	26 Feb, 2021	0 C 10 H 5 M 0 L
3002.4	26 Feb, 2021	0 C 15 H 10 M 0 L
3002.3	26 Feb, 2021	0 C 15 H 10 M 0 L
3002.2	18 Nov, 2020	0 C 15 H 10 M 0 L
3002.1	3 Nov, 2020	0 C 15 H 10 M 0 L
3002	22 Oct, 2020	0 C 16 H 11 M 0 L
3002rc1	13 Oct, 2020	0 C 15 H 10 M 0 L
3001.8	2 Sep, 2021	0 C 9 H 4 M 0 L
3001.7	23 Mar, 2021	0 C 10 H 5 M 0 L
3001.6	26 Feb, 2021	0 C 10 H 5 M 0 L
3001.5	26 Feb, 2021	0 C 15 H 10 M 0 L
3001.4	16 Dec, 2020	0 C 15 H 10 M 0 L
3001.3	3 Nov, 2020	0 C 15 H 10 M 0 L
3001.2	3 Nov, 2020	0 C 15 H 10 M 0 L
3001.1	7 Aug, 2020	0 C 16 H 11 M 0 L
3001	17 Jun, 2020	0 C 16 H 11 M 0 L
3001rc1	2 Jun, 2020	0 C 15 H 10 M 0 L
3000.9	23 Mar, 2021	0 C 10 H 5 M 0 L
3000.8	26 Feb, 2021	0 C 10 H 5 M 0 L
3000.7	26 Feb, 2021	0 C 15 H 10 M 0 L
3000.6	16 Dec, 2020	0 C 15 H 10 M 0 L
3000.5	3 Nov, 2020	0 C 15 H 10 M 0 L
3000.4	3 Nov, 2020	0 C 15 H 10 M 0 L
3000.3	13 May, 2020	0 C 16 H 11 M 0 L
3000.2	29 Apr, 2020	0 C 16 H 11 M 0 L
3000.1	1 Apr, 2020	1 C 17 H 11 M 0 L
3000	10 Feb, 2020	1 C 17 H 11 M 0 L
3000.0.0rc2	18 Jan, 2020	0 C 16 H 11 M 0 L
3000.0.0rc1	17 Jan, 2020	0 C 16 H 11 M 0 L
2019.2.8	16 Dec, 2020	0 C 16 H 11 M 0 L
2019.2.7	3 Nov, 2020	0 C 16 H 11 M 0 L
2019.2.6	3 Nov, 2020	0 C 16 H 11 M 0 L
2019.2.5	13 May, 2020	0 C 16 H 11 M 0 L
2019.2.4	29 Apr, 2020	0 C 16 H 11 M 0 L
2019.2.3	14 Jan, 2020	1 C 17 H 11 M 0 L
2019.2.2	23 Oct, 2019	1 C 17 H 12 M 0 L
2019.2.1	25 Sep, 2019	1 C 17 H 12 M 0 L
2019.2.0	25 Feb, 2019	2 C 17 H 12 M 0 L
2019.2.0rc2	30 Jan, 2019	1 C 17 H 11 M 0 L
2019.2.0rc1	14 Jan, 2019	1 C 17 H 11 M 0 L
2018.3.5	14 Jan, 2020	1 C 17 H 11 M 0 L
2018.3.4	25 Feb, 2019	1 C 17 H 11 M 0 L
2018.3.3	24 Oct, 2018	2 C 17 H 11 M 0 L
2018.3.2	27 Jun, 2018	2 C 18 H 12 M 0 L
2018.3.1	13 Jun, 2018	2 C 18 H 12 M 0 L
2018.3.0	2 Apr, 2018	2 C 18 H 12 M 0 L
2018.3.0rc1	5 Mar, 2018	2 C 18 H 12 M 0 L
2017.7.8	24 Oct, 2018	2 C 17 H 11 M 0 L
2017.7.7	3 Jul, 2018	2 C 18 H 12 M 0 L
2017.7.6	13 Jun, 2018	2 C 18 H 12 M 0 L
2017.7.5	26 Mar, 2018	2 C 18 H 12 M 0 L
2017.7.4	21 Feb, 2018	2 C 18 H 12 M 0 L
2017.7.3	1 Feb, 2018	2 C 18 H 12 M 0 L
2017.7.2	9 Oct, 2017	2 C 18 H 12 M 0 L
2017.7.1	15 Aug, 2017	3 C 19 H 12 M 0 L
2017.7.0	12 Jul, 2017	4 C 19 H 12 M 0 L
2017.7.0rc1	4 Jul, 2017	2 C 18 H 12 M 0 L
2016.11.10	24 Oct, 2018	2 C 18 H 12 M 0 L
2016.11.9	25 Jan, 2018	2 C 18 H 12 M 0 L
2016.11.8	9 Oct, 2017	2 C 18 H 12 M 0 L
2016.11.7	15 Aug, 2017	3 C 19 H 12 M 0 L

See all versions