Lucene search
MitreCVELIST:CVE-2017-14695HistoryOct 24, 2017 - 5:00 p.m.
CVE-2017-14695
2017-10-2417:00:00
mitre
www.cve.org
Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.3.8, 2016.11.x before 2016.11.8, and 2017.7.x before 2017.7.2 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-12791.
References
lists.opensuse.org/opensuse-updates/2017-10/msg00073.html
lists.opensuse.org/opensuse-updates/2017-10/msg00075.html
bugzilla.redhat.com/show_bug.cgi?id=1500748
docs.saltstack.com/en/latest/topics/releases/2016.11.8.html
docs.saltstack.com/en/latest/topics/releases/2016.3.8.html
docs.saltstack.com/en/latest/topics/releases/2017.7.2.html
github.com/saltstack/salt/commit/80d90307b07b3703428ecbb7c8bb468e28a9ae6d
Related
ubuntucve
ubuntucve
CVE-2017-14695
2017-10-24 00:00:00
CVE-2017-12791
2017-08-23 00:00:00
github
github
SaltStack Salt Directory traversal vulnerability in minion id validation
2022-05-17 00:24:32
SaltStack Salt Directory traversal vulnerability in minion id validation
2022-05-17 01:22:50
redhatcve
redhatcve
CVE-2017-14695
2017-10-19 12:25:28
CVE-2017-12791
2017-08-16 09:48:52
osv
osv
PYSEC-2017-36
2017-10-24 17:29:00
SaltStack Salt Directory traversal vulnerability in minion id validation
2022-05-17 00:24:32
CVE-2017-14695
2017-10-24 17:29:00
veracode
veracode
Directory Traversal
2017-10-25 02:27:30
Directory Traversal
2017-08-22 08:22:23
prion
prion
Directory traversal
2017-10-24 17:29:00
Directory traversal
2017-08-23 14:29:00
cve
cve
CVE-2017-14695
2017-10-24 17:29:00
CVE-2017-12791
2017-08-23 14:29:00
debiancve
debiancve
CVE-2017-14695
2017-10-24 17:29:00
CVE-2017-12791
2017-08-23 14:29:00
nvd
nvd
CVE-2017-14695
2017-10-24 17:29:00
CVE-2017-12791
2017-08-23 14:29:00
nessus
nessus
FreeBSD : salt -- multiple vulnerabilities (50127e44-7b88-4ade-8e12-5d57320823f1)
2017-11-27 00:00:00
openSUSE Security Update : salt (openSUSE-2017-1183)
2017-10-23 00:00:00
freebsd
freebsd
salt -- multiple vulnerabilities
2017-10-09 00:00:00
cvelist
cvelist
CVE-2017-12791
2017-08-23 14:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2017:2666-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2017:3381-1)
2021-06-09 00:00:00
Ubuntu: Security Advisory (USN-4769-1)
2023-01-27 00:00:00
archlinux
archlinux
[ASA-201708-17] salt: directory traversal
2017-08-23 00:00:00
[ASA-201710-12] salt: multiple issues
2017-10-09 00:00:00
photon
photon
ubuntu
ubuntu
Salt vulnerabilities
2021-03-15 00:00:00