Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Salt junos module uses an unsafe YAML loader which may allow unintended code execution
Vulnerability Description
Salt's junos execution module contained an unsafe YAML decode/load usage. A specially crafted YAML payload processed by the junos module could lead to unintended code execution under the context of the Salt process.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
对生成代码的控制不恰当(代码注入)
Vulnerability Title
Salt 安全漏洞
Vulnerability Description
Salt是Salt项目的一个自动化、基础设施管理、数据驱动编排和远程执行应用程序。 Salt存在安全漏洞,该漏洞源于junos执行模块包含不安全的YAML解码/加载使用,可能导致处理特制YAML有效载荷时在Salt进程上下文中执行意外代码。
CVSS Information
N/A
Vulnerability Type
N/A