VYPR
Vendor

Salt Project

Products
2
CVEs
2
Across products
2
Status
Private

Products

2

Recent CVEs

2
  • CVE-2024-38823LowJun 13, 2025
    risk 0.18cvss 2.7epss 0.00

    Salt's request server is vulnerable to replay attacks when not using a TLS encrypted transport.

  • CVE-2024-38822LowJun 13, 2025
    risk 0.18cvss 2.7epss 0.00

    Multiple methods in the salt master skip minion token validation. Therefore a misbehaving minion can impersonate another minion.