Skip to main content

Salt 2015

2 CVEs product

Monthly

CVE-2015-6918 PyPI MEDIUM PATCH This Month

salt before 2015.5.5 leaks git usernames and passwords to the log. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Salt 2015
NVD GitHub
CVSS 3.0
6.3
EPSS
0.3%
CVE-2015-6941 PyPI CRITICAL PATCH Act Now

win_useradd, salt-cloud and the Linode driver in salt 2015.5.x before 2015.5.6, and 2015.8.x before 2015.8.1 leak password information in debug logs. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Salt 2015
NVD GitHub
CVSS 3.0
9.8
EPSS
0.4%
EPSS 0% CVSS 6.3
MEDIUM PATCH This Month

salt before 2015.5.5 leaks git usernames and passwords to the log. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Salt 2015
NVD GitHub
EPSS 0% CVSS 9.8
CRITICAL PATCH Act Now

win_useradd, salt-cloud and the Linode driver in salt 2015.5.x before 2015.5.6, and 2015.8.x before 2015.8.1 leak password information in debug logs. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Salt 2015
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy