Lucene search
GoogleOSV:PYSEC-2019-119HistoryJul 18, 2019 - 5:15 p.m.
PYSEC-2019-119
2019-07-1817:15:00
Google
osv.dev
5
EPSS
0.003
Percentile
69.3%
SaltStack Salt 2018.3, 2019.2 is affected by: SQL Injection. The impact is: An attacker could escalate privileges on MySQL server deployed by cloud provider. It leads to RCE. The component is: The mysql.user_chpass function from the MySQL module for Salt. The attack vector is: specially crafted password string. The fixed version is: 2018.3.4.
Related
github
github
SaltStack Salt SQL Injection vulnerability in mysql.user_chpass function
2022-05-24 16:50:39
cve
cve
CVE-2019-1010259
2019-07-18 17:15:11
CVE-2019-1000033
2019-07-26 21:15:11
prion
prion
Sql injection
2019-07-18 17:15:00
cvelist
cvelist
CVE-2019-1010259
2019-07-18 16:33:35
veracode
veracode
SQL Injection
2019-07-19 03:16:26
nvd
nvd
CVE-2019-1010259
2019-07-18 17:15:11
CVE-2019-1000033
2019-07-26 21:15:11
osv
osv
SaltStack Salt SQL Injection vulnerability in mysql.user_chpass function
2022-05-24 16:50:39
debiancve
debiancve
CVE-2019-1010259
2019-07-18 17:15:11
ubuntucve
ubuntucve
CVE-2019-1010259
2019-07-18 00:00:00