CVE-2025-22239 – Salt Master Arbitary Event Injection Vulnerability

June 13, 2025

CVE ID : CVE-2025-22239

Published : June 13, 2025, 7:15 a.m. | 2 hours, 49 minutes ago

Description : Arbitrary event injection on Salt Master. The master’s “_minion_event” method can be used by and authorized minion to send arbitrary events onto the master’s event bus.

Severity: 8.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-22240 – GitFS Path Traversal Vulnerability

Next Article CVE-2025-22238 – Minion File Cache Directory Traversal Vulnerability

Highlights

CVE-2025-53891 – Apache Time-Line File Upload Vulnerability (Remote File Inclusion/DoS)

July 15, 2025

CVE ID : CVE-2025-53891

Published : July 15, 2025, 12:15 a.m. | 2 hours, 36 minutes ago

Description : The timelineofficial/Time-Line- repository contains the source code for the TIME LINE website. A vulnerability was found in the TIME LINE website where uploaded files (instruction/message media) are not strictly validated for type and size. A user may upload renamed or oversized files that can disrupt performance or bypass restrictions. This could result in malicious file upload, denial of service, or client-side crashes. Version 1.0.5 contains a fix for the issue.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CodeSOD: A Unique Way to Primary Key

BrowserStack launches Figma plugin for detecting accessibility issues in design phase

Parasoft brings agentic AI to service virtualization in latest release

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

I’m a wearables editor and here are the 7 Pixel Watch 4 rumors I’m most curious about

8 ways I quickly leveled up my Linux skills – and you can too

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

Zero Trust & Cybersecurity Mesh: Your Org’s Survival Guide

Execute Ping Commands and Get Back Structured Data in PHP

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

“I don’t think I changed his mind” — NVIDIA CEO comments on H20 AI GPU sales resuming in China following a meeting with President Trump

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

CVE-2025-22239 – Salt Master Arbitary Event Injection Vulnerability

CVE-2025-44658 – Netgear RAX30 PHP-FPM Misconfigured Extension Bypass Vulnerability

CVE-2025-7393 – Drupal Mail Login Authentication Bypass

SonicWALL Connect Tunnel Vulnerability Allows Attackers to Create a DoS Condition

How Innovative Healthcare Organizations Integrate Clinical Intelligence

Meta AI Just Released Llama 4 Scout and Llama 4 Maverick: The First Set of Llama 4 Models

Tropy – explore your research photos

CVE-2025-53891 – Apache Time-Line File Upload Vulnerability (Remote File Inclusion/DoS)

CVE-2025-42973 – SAP Data Services Cross-Site Scripting Vulnerability

CVE-2025-46571 – Open WebUI Unauthenticated JavaScript File Upload to Admin RCE

CVE-2025-21467 – Cisco Router Buffer Overflow

CVE-2025-22239 – Salt Master Arbitary Event Injection Vulnerability

Related Posts