Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2021-22004HistorySep 08, 2021 - 3:15 p.m.
CVE-2021-22004
2021-09-0815:15:00
Debian Security Bug Tracker
security-tracker.debian.org
11
0.0004 Low
EPSS
Percentile
5.2%
An issue was discovered in SaltStack Salt before 3003.3. The salt minion installer will accept and use a minion config file at C:\salt\conf if that file is in place before the installer is run. This allows for a malicious actor to subvert the proper behaviour of the given minion software.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 11 | all | salt | <= 3002.6+dfsg1-4+deb11u1 | salt_3002.6+dfsg1-4+deb11u1_all.deb |
| Debian | 10 | all | salt | <= 2018.3.4+dfsg1-6+deb10u3 | salt_2018.3.4+dfsg1-6+deb10u3_all.deb |
Related
osv
osv
CVE-2021-22004
2021-09-08 15:15:12
Improper Authentication in SaltStack Salt
2022-05-24 19:13:30
PYSEC-2021-346
2021-09-08 15:15:00
cvelist
cvelist
CVE-2021-22004
2021-09-08 15:00:14
redhatcve
redhatcve
CVE-2021-22004
2022-01-18 11:45:07
github
github
Improper Authentication in SaltStack Salt
2022-05-24 19:13:30
prion
prion
Design/Logic Flaw
2021-09-08 15:15:00
alpinelinux
alpinelinux
CVE-2021-22004
2021-09-08 15:15:00
ubuntucve
ubuntucve
CVE-2021-22004
2021-09-08 00:00:00
veracode
veracode
Denial Of Service (DoS)
2021-09-04 08:26:48
cve
cve
CVE-2021-22004
2021-09-08 15:15:00
fedora
fedora
[SECURITY] Fedora 35 Update: salt-3003.3-1.fc35
2021-09-24 20:51:03
[SECURITY] Fedora 34 Update: salt-3003.3-1.fc34
2021-09-09 17:33:12
[SECURITY] Fedora 33 Update: salt-3003.3-1.fc33
2021-09-09 17:46:23
openvas
openvas
Fedora: Security Advisory for salt (FEDORA-2021-158e9c6eb9)
2021-10-02 00:00:00
Fedora: Security Advisory for salt (FEDORA-2021-00ada7e667)
2021-09-10 00:00:00
Fedora: Security Advisory for salt (FEDORA-2021-93a7c8b7c6)
2021-09-10 00:00:00
nessus
nessus
Fedora 34 : salt (2021-00ada7e667)
2021-09-10 00:00:00
Fedora 33 : salt (2021-93a7c8b7c6)
2021-09-10 00:00:00