In SaltStack Salt 2016.9 through 3002.6, a command injection vulnerability exists in the snapper module that allows for local privilege escalation on a minion. The attack requires that a file is created with a pathname that is backed up by snapper, and that the master calls the snapper.diff function (which executes popen unsafely).
References
Configurations
History
21 Dec 2023, 18:32
Type | Values Removed | Values Added |
---|---|---|
References | () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6BUWUF5VTENNP2ZYZBVFKPSUHLKLUBD5/ - Mailing List, Third Party Advisory | |
References | () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ACVT7M4YLZRLWWQ6SGRK3C6TOF4FXOXT/ - Mailing List, Third Party Advisory | |
References | () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LDKMAJXYFHM4USVX3H5V2GCCBGASWUSM/ - Mailing List, Third Party Advisory | |
References | () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MBAHHSGZLEJRCG4DX6J4RBWJAAWH55RQ/ - Mailing List, Third Party Advisory | |
References | () https://security.gentoo.org/glsa/202310-22 - Third Party Advisory |
07 Nov 2023, 03:34
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
31 Oct 2023, 14:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
03 May 2022, 16:04
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-78 |
23 Nov 2021, 21:12
Type | Values Removed | Values Added |
---|---|---|
References | (DEBIAN) https://www.debian.org/security/2021/dsa-5011 - Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6BUWUF5VTENNP2ZYZBVFKPSUHLKLUBD5/ - Mailing List, Third Party Advisory | |
References | (MLIST) https://lists.debian.org/debian-lts-announce/2021/11/msg00009.html - Mailing List, Third Party Advisory | |
CPE | cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:* |
19 Nov 2021, 20:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
10 Nov 2021, 20:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
25 Sep 2021, 01:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
16 Sep 2021, 13:21
Type | Values Removed | Values Added |
---|---|---|
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MBAHHSGZLEJRCG4DX6J4RBWJAAWH55RQ/ - Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ACVT7M4YLZRLWWQ6SGRK3C6TOF4FXOXT/ - Mailing List, Third Party Advisory | |
CPE | cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:* |
09 Sep 2021, 20:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
09 Sep 2021, 19:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
04 May 2021, 20:24
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-77 | |
CPE | cpe:2.3:a:saltstack:salt:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : 4.6
v3 : 7.8 |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LDKMAJXYFHM4USVX3H5V2GCCBGASWUSM/ - Mailing List, Third Party Advisory | |
References | (MISC) https://sec.stealthcopter.com/saltstack-snapper-minion-privledge-escaltion/ - Exploit, Patch, Third Party Advisory |
28 Apr 2021, 05:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
23 Apr 2021, 06:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-04-23 06:15
Updated : 2023-12-21 18:32
NVD link : CVE-2021-31607
Mitre link : CVE-2021-31607
CVE.ORG link : CVE-2021-31607
JSON object : View
Products Affected
fedoraproject
- fedora
saltstack
- salt
CWE
CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')