CVE-2020-11651

Опубликовано: 30 апр. 2020

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Критический

Описание

An issue was discovered in SaltStack Salt before 2019.2.4 and 3000 before 3000.2. The salt-master process ClearFuncs class does not properly validate method calls. This allows a remote user to access some methods without authentication. These methods can be used to retrieve user tokens from the salt master and/or run arbitrary commands on salt minions.

Ссылки

http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00047.html
Mailing List
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00070.html
Mailing List
Third Party Advisory
http://packetstormsecurity.com/files/157560/Saltstack-3000.1-Remote-Code-Execution.html
Exploit
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/157678/SaltStack-Salt-Master-Minion-Unauthenticated-Remote-Code-Execution.html
Exploit
Third Party Advisory
VDB Entry
http://www.vmware.com/security/advisories/VMSA-2020-0009.html
Third Party Advisory
https://docs.saltstack.com/en/latest/topics/releases/2019.2.4.html
Vendor Advisory
https://github.com/saltstack/salt/blob/v3000.2_docs/doc/topics/releases/3000.2.rst
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2020/05/msg00027.html
Mailing List
Third Party Advisory
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-salt-2vx545AG
Third Party Advisory
https://usn.ubuntu.com/4459-1/
Third Party Advisory
https://www.debian.org/security/2020/dsa-4676
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00047.html
Mailing List
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00070.html
Mailing List
Third Party Advisory
http://packetstormsecurity.com/files/157560/Saltstack-3000.1-Remote-Code-Execution.html
Exploit
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/157678/SaltStack-Salt-Master-Minion-Unauthenticated-Remote-Code-Execution.html
Exploit
Third Party Advisory
VDB Entry
http://www.vmware.com/security/advisories/VMSA-2020-0009.html
Third Party Advisory
https://docs.saltstack.com/en/latest/topics/releases/2019.2.4.html
Vendor Advisory
https://github.com/saltstack/salt/blob/v3000.2_docs/doc/topics/releases/3000.2.rst
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2020/05/msg00027.html
Mailing List
Third Party Advisory
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-salt-2vx545AG
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:saltstack:salt:*:*:*:*:*:*:*:*

Версия до 2019.2.4 (исключая)

cpe:2.3:a:saltstack:salt:*:*:*:*:*:*:*:*

Версия от 3000 (включая) до 3000.2 (исключая)

Конфигурация 2

cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*

Конфигурация 3

Одно из

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Конфигурация 4

Одно из

cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

Конфигурация 5

Одно из

cpe:2.3:a:vmware:application_remote_collector:7.5.0:*:*:*:*:*:*:*

cpe:2.3:a:vmware:application_remote_collector:8.0.0:*:*:*:*:*:*:*

EPSS

Процентиль: 100%

0.94421

Критический

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2020-11651

CVSS3: 9.8

ubuntu

почти 6 лет назад

CVE-2020-11651

CVSS3: 9.8

redhat

почти 6 лет назад

CVE-2020-11651

CVSS3: 9.8

debian

почти 6 лет назад

An issue was discovered in SaltStack Salt before 2019.2.4 and 3000 bef ...

GHSA-pjhf-vpx3-33r3

CVSS3: 9.8

github

больше 3 лет назад

SaltStack Salt Unauthenticated Remote Code Execution

BDU:2020-03941

CVSS3: 9.8

fstec

почти 6 лет назад

Уязвимость компонента master.py системы управления конфигурациями и удалённого выполнения операций SaltStack, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании

EPSS

Процентиль: 100%

0.94421

Критический

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

NVD-CWE-Other