Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-12791

Опубликовано: 23 авг. 2017
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 7.5
CVSS3: 9.8

Описание

Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.11.7 and 2017.7.x before 2017.7.1 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID.

РелизСтатусПримечание
artful

ignored

end of life
bionic

not-affected

2017.7.4+dfsg1-1
cosmic

not-affected

2017.7.4+dfsg1-1
devel

not-affected

disco

not-affected

2017.7.4+dfsg1-1
eoan

not-affected

2017.7.4+dfsg1-1
esm-apps/bionic

not-affected

2017.7.4+dfsg1-1
esm-apps/jammy

not-affected

esm-apps/xenial

released

2015.8.8+ds-1ubuntu0.1+esm1
esm-infra-legacy/trusty

not-affected

0.17.5+ds-1ubuntu0.1~esm1

Показывать по

Ссылки на источники

EPSS

Процентиль: 79%
0.01383
Низкий

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

redhat логотип

CVE-2017-12791

CVSS3: 5.3
redhat
почти 8 лет назад

Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.11.7 and 2017.7.x before 2017.7.1 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID.

nvd логотип

CVE-2017-12791

CVSS3: 9.8
nvd
почти 8 лет назад

Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.11.7 and 2017.7.x before 2017.7.1 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID.

debian логотип

CVE-2017-12791

CVSS3: 9.8
debian
почти 8 лет назад

Directory traversal vulnerability in minion id validation in SaltStack ...

suse-cvrf логотип

openSUSE-SU-2017:2383-1

suse-cvrf
почти 8 лет назад

Security update for salt

suse-cvrf логотип

SUSE-SU-2017:2676-1

suse-cvrf
больше 7 лет назад

Security update for Salt

EPSS

Процентиль: 79%
0.01383
Низкий

7.5 High

CVSS2

9.8 Critical

CVSS3

Уязвимость CVE-2017-12791