[Git][security-tracker-team/security-tracker][master] Add CVE-2023-34049/salt
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Oct 31 07:18:06 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
76572c90 by Salvatore Bonaccorso at 2023-10-31T08:17:22+01:00
Add CVE-2023-34049/salt
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,6 @@
+CVE-2023-34049 [allows an attacker to force Salt-SSH to run their script]
+ - salt <unfixed>
+ NOTE: https://saltproject.io/security-announcements/2023-10-27-advisory/index.html
CVE-2023-5844 (Unverified Password Change in GitHub repository pimcore/admin-ui-class ...)
NOT-FOR-US: Pimcore admin-ui-classic-bundle
CVE-2023-5843 (The Ads by datafeedr.com plugin for WordPress is vulnerable to Remote ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/76572c90a00dfe965740a4343f40b69d7bfd2fac
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/76572c90a00dfe965740a4343f40b69d7bfd2fac
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231031/20db3a26/attachment.htm>
More information about the debian-security-tracker-commits
mailing list