Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2017-8109HistoryApr 25, 2017 - 5:59 p.m.
CVE-2017-8109
2017-04-2517:59:00
Debian Security Bug Tracker
security-tracker.debian.org
12
0.0004 Low
EPSS
Percentile
5.2%
The salt-ssh minion code in SaltStack Salt 2016.11 before 2016.11.4 copied over configuration from the Salt Master without adjusting permissions, which might leak credentials to local attackers on configured minions (clients).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 11 | all | salt | < 2016.11.5+ds-1 | salt_2016.11.5+ds-1_all.deb |
| Debian | 10 | all | salt | < 2016.11.5+ds-1 | salt_2016.11.5+ds-1_all.deb |
Related
github
github
SaltStack Salt Information Exposure
2022-05-17 02:46:54
debian
debian
Security Update for salt
2017-07-05 07:51:05
Security Update for salt
2017-07-05 08:00:25
osv
osv
PYSEC-2017-82
2017-04-25 17:59:00
CVE-2017-8109
2017-04-25 17:59:00
SaltStack Salt Information Exposure
2022-05-17 02:46:54
ubuntucve
ubuntucve
CVE-2017-8109
2017-04-25 00:00:00
redhatcve
redhatcve
CVE-2017-8109
2017-04-26 09:18:18
prion
prion
Code injection
2017-04-25 17:59:00
veracode
veracode
Information Disclosure
2017-04-28 03:27:00
cve
cve
CVE-2017-8109
2017-04-25 17:59:00
cvelist
cvelist
CVE-2017-8109
2017-04-25 17:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2017:1581-1)
2021-06-09 00:00:00
nessus
nessus
SUSE SLES11 Security Update : Salt (SUSE-SU-2017:1581-1)
2017-06-20 00:00:00
Photon OS 1.0: Salt PHSA-2018-1.0-0106
2019-02-07 00:00:00
Photon OS 1.0: Salt PHSA-2018-1.0-0106 (deprecated)
2018-08-17 00:00:00
photon
photon