HistoryMay 08, 2020 - 12:00 a.m.

SaltStack < 2019.2.4 / 3000.x < 3000.2 Authentication Bypass (CVE-2020-11651)

2020-05-0800:00:00

www.tenable.com

The version of SaltStack installed on the remote server is affected by an authentication bypass vulnerability in the ClearFuncs class due to improper validation of method calls. An unauthenticated, remote attacker can exploit this by accessing exposed methods to trigger minions to run arbitrary commands as root, or to retrieve the root key to authenticate commands from the local root user on the master server.

Binary data saltstack_cve_2020_11651.nbin

VendorProductVersionCPE
saltstacksaltcpe:/a:saltstack:salt

Vendor	Product	Version	CPE
saltstack	salt		cpe:/a:saltstack:salt

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11651

www.nessus.org/u?4df67f57

githubexploit 10

veracode 1

ubuntucve 1

debiancve 1

github 1

redhatcve 1

cisa_kev 1

cve 1

prion 1

osv 6

alpinelinux 1

trendmicroblog 1

nessus 19

archlinux 1

cisco 1

debian 5

thn 3

attackerkb 4

cisa 1

threatpost 3

openvas 13

checkpoint_advisories 1

zdt 3

suse 4

vmware 1

packetstorm 2

huawei 1

metasploit 2

freebsd 1

photon 4

rapid7blog 1

exploitdb 1

ubuntu 1

githubexploit

Exploit for CVE-2020-11651

2021-10-01 14:33:29

Exploit for CVE-2020-11651

2020-05-04 20:34:04

Exploit for CVE-2020-11651

2020-05-07 04:41:25

veracode

Authentication Bypass

2020-05-04 05:37:27

ubuntucve

CVE-2020-11651

2020-04-30 00:00:00

debiancve

CVE-2020-11651

2020-04-30 17:15:00

github

SaltStack Salt Unauthenticated Remote Code Execution

2022-05-24 17:16:59

redhatcve

CVE-2020-11651

2020-05-06 17:39:55

cisa_kev

SaltStack Salt Authentication Bypass Vulnerability

2021-11-03 00:00:00

cve

CVE-2020-11651

2020-04-30 17:15:00

prion

Authentication flaw

2020-04-30 17:15:00

osv

PYSEC-2020-102

2020-04-30 17:15:00

SaltStack Salt Unauthenticated Remote Code Execution

2022-05-24 17:16:59

CVE-2020-11651

2020-04-30 17:15:12

alpinelinux

CVE-2020-11651

2020-04-30 17:15:00

trendmicroblog

This Week in Security News: How the Cybercriminal Underground Has Changed in 5 Years and the NSA Warns of New Sandworm Attacks on Email Servers

2020-05-29 12:27:26

nessus

SaltStack < 2019.2.4 / 3000.x < 3000.2 Multiple Vulnerabilities

2020-05-07 00:00:00

SUSE SLED15 / SLES15 Security Update : salt (SUSE-SU-2020:1150-1)

2020-04-30 00:00:00

openSUSE Security Update : salt (openSUSE-2020-564)

2020-05-04 00:00:00

archlinux

[ASA-202005-1] salt: multiple issues

2020-05-05 00:00:00

cisco

SaltStack FrameWork Vulnerabilities Affecting Cisco Products

2020-05-28 16:00:00

debian

[SECURITY] [DLA 2223-1] salt security update

2020-05-30 04:21:15

[SECURITY] [DSA 4676-2] salt security update

2020-05-07 20:16:07

[SECURITY] [DSA 4676-2] salt security update

2020-05-07 20:16:07

thn

Hackers Breach LineageOS, Ghost, DigiCert Servers Using SaltStack Vulnerability

2020-05-04 04:00:00

Critical SaltStack RCE Bug (CVSS Score 10) Affects Thousands of Data Centers

2020-05-01 13:04:00

Top 15 Vulnerabilities Attackers Exploited Millions of Times to Hack Linux Systems

2021-08-23 13:27:00

attackerkb

CVE-2020-11651

2020-04-30 00:00:00

CVE-2020-11652

2020-04-30 00:00:00

CVE-2020-25592 — SaltStack Authentication Bypass and Salt SSH Command Execution

2020-11-06 00:00:00

cisa

SaltStack Patches Critical Vulnerabilities in Salt

2020-05-01 00:00:00

threatpost

Hackers Exploit Critical Flaw in Ghost Platform with Cryptojacking Attack

2020-05-04 19:23:41

Salt Bugs Allow Full RCE as Root on Cloud Servers

2020-04-30 20:54:50

Hackers Compromise Cisco Servers Via SaltStack Flaws

2020-05-28 20:51:25

openvas

openSUSE: Security Advisory for salt (openSUSE-SU-2020:0564-1)

2020-05-01 00:00:00

SUSE: Security Advisory (SUSE-SU-2020:1151-1)

2021-04-19 00:00:00

Debian: Security Advisory (DLA-2223-1)

2020-05-31 00:00:00

checkpoint_advisories

Saltstack Salt Authentication Bypass (CVE-2020-11651; CVE-2020-11652)

2020-05-05 00:00:00

zdt

SaltStack Salt Master/Minion Unauthenticated Remote Code Execution Exploit

2020-05-12 00:00:00

Saltstack 3000.1 - Remote Code Execution Exploit

2020-05-04 00:00:00

Saltstack 3000.1 Remote Code Execution Exploit

2020-05-07 00:00:00

suse

Security update for salt (critical)

2020-04-30 00:00:00

Security update for salt (moderate)

2020-07-26 00:00:00

Security update for salt (critical)

2021-07-11 00:00:00

vmware

vRealize Operations Application Remote Collector (ARC) addresses Authentication Bypass and Directory Traversal vulnerabilities (CVE-2020-11651, CVE-2020-11652)

2020-05-08 00:00:00

packetstorm

Saltstack 3000.1 Remote Code Execution

2020-05-05 00:00:00

SaltStack Salt Master/Minion Unauthenticated Remote Code Execution

2020-05-12 00:00:00

huawei

Security Advisory - Two Vulnerabilities in SaltStack Salt

2020-07-15 00:00:00

metasploit

SaltStack Salt Master/Minion Unauthenticated RCE

2020-05-11 17:05:38

SaltStack Salt Master Server Root Key Disclosure

2020-05-11 17:05:38

freebsd

salt -- multiple vulnerabilities in salt-master process

2020-04-30 00:00:00

photon

Critical Photon OS Security Update - PHSA-2020-0091

2020-05-15 00:00:00

Critical Photon OS Security Update - PHSA-2020-3.0-0091

2020-05-15 00:00:00

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-1.0-0294

2020-05-14 00:00:00

rapid7blog

SaltStack Pre-Authenticated Remote Root (CVE-2020-16846 and CVE-2020-25592): What You Need to Know

2020-11-10 14:22:33

exploitdb

Saltstack 3000.1 - Remote Code Execution

2020-05-05 00:00:00

ubuntu

Salt vulnerabilities

2020-08-13 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc