2018.11.0

DATE	CVE	VULNERABILITY TITLE	RISK
2020-01-17	CVE-2019-17361	Command Injection vulnerability in multiple products In SaltStack Salt through 2019.2.0, the salt-api NET API with the ssh client enabled is vulnerable to command injection. network low complexity saltstack debian opensuse canonical CWE-77 critical	9.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.