CVE-2021-25282

Published February 27th, 2021

View on NVD ↗

CVSS v3

9.1

CRITICAL

CVSS v2

6.4

MEDIUM

Affected

1

PROJECT

Description

An issue was discovered in through SaltStack Salt before 3002.5. The salt.wheel.pillar_roots.write method is vulnerable to directory traversal.

Software to automate the management and configuration of infrastructure and applications at scale.

GitHub

15.5K