CVE-2021-31607

🗓️ 23 Apr 2021 00:00:00Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 289 Views

SaltStack Salt 2016.9 through 3002.6, command injection vulnerability in snapper module

Reporter	Title	Published	Views	Family All 97
AlpineLinux	CVE-2021-31607	23 Apr 202100:00	–	alpinelinux
Circl	CVE-2021-31607	23 Apr 202115:10	–	circl
CNNVD	SaltStack Salt 操作系统命令注入漏洞	23 Apr 202100:00	–	cnnvd
CNVD	SaltStack Salt Elevation of Privilege Vulnerability	27 Apr 202100:00	–	cnvd
Cvelist	CVE-2021-31607	23 Apr 202100:00	–	cvelist
Debian	[SECURITY] [DLA 2815-1] salt security update	10 Nov 202118:08	–	debian
Debian	[SECURITY] [DSA 5011-1] salt security update	19 Nov 202111:19	–	debian
Debian CVE	CVE-2021-31607	23 Apr 202100:00	–	debiancve
Tenable Nessus	Debian DLA-2815-1 : salt - LTS security update	11 Nov 202100:00	–	nessus
Tenable Nessus	Debian DSA-5011-1 : salt - security update	19 Nov 202100:00	–	nessus

NVD

Node

saltstack saltRange2016.9–3002.6

Node

Source	Link
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MBAHHSGZLEJRCG4DX6J4RBWJAAWH55RQ/
debian	www.debian.org/security/2021/dsa-5011
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LDKMAJXYFHM4USVX3H5V2GCCBGASWUSM/
lists	www.lists.debian.org/debian-lts-announce/2021/11/msg00009.html
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6BUWUF5VTENNP2ZYZBVFKPSUHLKLUBD5/
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ACVT7M4YLZRLWWQ6SGRK3C6TOF4FXOXT/
security	www.security.gentoo.org/glsa/202310-22
sec	www.sec.stealthcopter.com/saltstack-snapper-minion-privledge-escaltion/

21 Nov 2024 06:05Current

7.8High risk

Vulners AI Score7.8

CVSS 24.6

CVSS 3.17.8

EPSS0.04548