CVE-2020-11652: SaltStack Salt Path Traversal Vulnerability. SaltStack Salt

SaltStack Salt Path Traversal Vulnerability. SaltStack Salt contains a path traversal vulnerability in the salt-master process ClearFuncs which allows directory access to authenticated users. Salt users who follow fundamental internet security guidelines and best practices are not affected by this vulnerability.

• CISA KEV-listed (remediation due 2022-05-03)
• EPSS 93.7% (99.9% percentile)

Browse the CVE database

Read the full analysis on IntelFusions