Arch Linux
Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download
issues
advisories
todo
stats
log
login
ASA-201701-41 - log
back
ASA-201701-41
created
at 25 Sep 2019 19:32:14
Workaround
Impact
+
A remote attacker is able to execute arbitrary commands on a salt master when salt is not configured properly. In addition, an authenticated attacker is able to execute arbitrary code on the salt stack if salt-api is run as root.