Security Advisory

CVE-2025-62349

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-30 18:59:21

Last updated 2026-02-26 15:04:42

Assigner vmware

State PUBLISHED

Description

Salt contains an authentication protocol version downgrade weakness that can allow a malicious minion to bypass newer authentication/security features by using an older request payload format, enabling minion impersonation and circumventing protections introduced in response to prior issues.

← Browse all CVEs View on cve.org ↗