CVEs affecting projects tracked on Release Alert, from NVD & OSV.
In SaltStack Salt before 2016.3.6, compromised salt-minions can impersonate the salt-master.