216.73.217.80

CVE-2025-62348

· Published 30/01/2026 19:16 · Modified 30/01/2026 19:16

Labels: CVE-2025-62348 2026-01-30CVE-2025-62348CWE-94[email protected]

Essential information

Published
30/01/2026 19:16
Modified
30/01/2026 19:16
Author
Creator
CVSS
7.3 HIGH (v3) 7.3 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Salt's junos execution module contained an unsafe YAML decode/load usage. A specially crafted YAML payload processed by the junos module could lead to unintended code execution under the context of the Salt process.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
saltstack / salt cpe:2.3:a:saltstack:salt:*:*:*:*:*:*:*:*
saltstack / junos execution module cpe:2.3:a:saltstack:junos_execution_module:*:*:*:*:*:*:*:*

References