Salt · Salt · CVE-2025-62349
**Name of the Vulnerable Software and Affected Versions**
Salt (affected versions not specified)
**Description**
Salt is susceptible to an authentication protocol version downgrade. A malicious minion can exploit this to bypass newer authentication and security features by utilizing an older request payload format. This allows for minion impersonation and circumvents security measures implemented to address previous issues.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.