Описание
modules/chef.py in SaltStack before 2014.7.4 does not properly handle files in /tmp.
Ссылки
- Third Party Advisory
- Issue TrackingPatch
- Release NotesVendor Advisory
- Issue TrackingPatchThird Party Advisory
- Issue TrackingPatchThird Party Advisory
- Third Party Advisory
- Issue TrackingPatch
- Release NotesVendor Advisory
- Issue TrackingPatchThird Party Advisory
- Issue TrackingPatchThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2014.7.3 (включая)
cpe:2.3:a:saltstack:salt:*:*:*:*:*:*:*:*
Конфигурация 2
cpe:2.3:o:fedoraproject:fedora:23:*:*:*:*:*:*:*
EPSS
Процентиль: 24%
0.00082
Низкий
5.3 Medium
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-19
Связанные уязвимости
CVSS3: 5.3
ubuntu
почти 9 лет назад
modules/chef.py in SaltStack before 2014.7.4 does not properly handle files in /tmp.
redhat
почти 11 лет назад
modules/chef.py in SaltStack before 2014.7.4 does not properly handle files in /tmp.
CVSS3: 5.3
debian
почти 9 лет назад
modules/chef.py in SaltStack before 2014.7.4 does not properly handle ...
CVSS3: 5.3
github
больше 3 лет назад
SaltStack has insecure /tmp file handling in salt/modules/chef.py
EPSS
Процентиль: 24%
0.00082
Низкий
5.3 Medium
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-19