admin/GobyVuls
1
0
Fork 0
mirror of https://github.com/gobysec/GobyVuls.git synced 2025-06-20 09:50:49 +00:00
Code Issues Packages Projects Releases Wiki Activity

add CVE-2021-25282

Browse Source
This commit is contained in:
gobysec 2021-07-13 11:40:32 +08:00
parent f731e90976
commit fb0f444be4
2 changed files with 9 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

BIN
SaltStack/CVE-2021-25282/CVE-2021-25282.gif Normal file
View File

Binary file not shown.
Side by Side

After

Width:  |  Height:  |  Size: 981 KiB

9
SaltStack/CVE-2021-25282/README.md Normal file
View File

@ -0,0 +1,9 @@
# SaltStack pillar_roots.write File Write (CVE-2021-25282)
An issue was discovered in through SaltStack Salt before 3002.5. The salt.wheel.pillar_roots.write method is vulnerable to directory traversal.
**FOFA query rule**: [app="SALTSTACK-产品"](https://fofa.so/result?qbase64=YXBwPSJTQUxUU1RBQ0st5Lqn5ZOBIg%3D%3D)
# Demo
![](CVE-2021-25282.gif)