VYPR
Critical severity9.8NVD Advisory· Published Aug 23, 2017· Updated Jun 17, 2026

CVE-2017-12791

CVE-2017-12791

Description

Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.11.7 and 2017.7.x before 2017.7.1 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
saltPyPI
< 2016.11.72016.11.7
saltPyPI
>= 2017.7.0, < 2017.7.12017.7.1

Affected products

14

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.