Lucene search

K
freebsdFreeBSDA1E03A3D-7BE0-11EB-B392-20CF30E32F6D
HistoryFeb 25, 2021 - 12:00 a.m.

salt -- multiple vulnerabilities

2021-02-2500:00:00
vuxml.freebsd.org
24

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

SaltStack reports multiple security vulnerabilities in Salt

CVE-2021-3197: The Salt-API.s SSH client is vulnerable to a shell injection by including ProxyCommand in an argument, or via ssh_options provided in an API request.
CVE-2021-25281: The Salt-API does not have eAuth credentials for the wheel_async client.
CVE-2021-25282: The salt.wheel.pillar_roots.write method is vulnerable to directory traversal.
CVE-2021-25283: The jinja renderer does not protect against server-side template injection attacks.
CVE-2021-25284: webutils write passwords in cleartext to /var/log/salt/minion
CVE-2021-3148: command injection in salt.utils.thin.gen_thin()
CVE-2020-35662: Several places where Salt was not verifying the SSL cert by default.
CVE-2021-3144: eauth Token can be used once after expiration.
CVE-2020-28972: Code base not validating SSL/TLS certificate of the server, which might allow attackers to obtain sensitive information via a man-in-the-middle attack
CVE-2020-28243: Local Privilege Escalation in the Minion.

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

Related for A1E03A3D-7BE0-11EB-B392-20CF30E32F6D