ubuntu · CVE-2018-15751

Quick triage

Priority: medium Published: 2018-10-24 22:29:00 UTC Updated: 2025-08-25 22:48:22 UTC

View at Official ubuntu advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2018-15751 medium priority: Ubuntu including 1 source packages (salt), 11 status rows across 11 suites (bionic, cosmic, disco, eoan, focal, hirsute, impish, jammy, trusty, upstream, xenial): released 5, ignored 3, not-affected 2, DNE 1.

Description:

SaltStack Salt before 2017.7.8 and 2018.3.x before 2018.3.3 allow remote attackers to bypass authentication and execute arbitrary commands via salt-api(netapi).

cvelogic Threat Intelligence