CVE-2025-22239

CVE-2025-22239

Name

CVE-2025-22239

Description

Arbitrary event injection on Salt Master. The master's "_minion_event" method can be used by and authorized minion to send arbitrary events onto the master's event bus.

NVD Severity

high

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
security@vmware.com	https://docs.saltproject.io/en/3006/topics/releases/3006.12.html
security@vmware.com	https://docs.saltproject.io/en/3007/topics/releases/3007.4.html

Type

URI

security@vmware.com

https://docs.saltproject.io/en/3006/topics/releases/3006.12.html

security@vmware.com

https://docs.saltproject.io/en/3007/topics/releases/3007.4.html

CPE URI	Source package	Min version	Max version
	salt	>= 3006.x	< 3006.12
	salt	>= 3007.x	< 3007.4

CPE URI

Source package

Min version

Max version

salt

>= 3006.x

< 3006.12

salt

>= 3007.x

< 3007.4

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
salt	edge-community	3007.3-r0	Will Sinatra <wpsinatra@gmail.com>	possibly vulnerable
salt	edge-community	3007.2-r1	Will Sinatra <wpsinatra@gmail.com>	possibly vulnerable
salt	edge-community	3007.2-r0	Will Sinatra <wpsinatra@gmail.com>	possibly vulnerable
salt	edge-community	3007.1-r1	Will Sinatra <wpsinatra@gmail.com>	possibly vulnerable
salt	edge-community	3006.6-r0	Kevin Daudt <kdaudt@alpinelinux.org>	possibly vulnerable
salt	3.22-community	3007.2-r1	Will Sinatra <wpsinatra@gmail.com>	possibly vulnerable
salt	3.22-community	3007.1-r1	Will Sinatra <wpsinatra@gmail.com>	possibly vulnerable
salt	3.22-community	3006.6-r0	None	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

salt

edge-community

3007.3-r0

Will Sinatra <wpsinatra@gmail.com>

possibly vulnerable

salt

edge-community