{"vulnerability": "CVE-2020-28243", "sightings": [{"uuid": "5d6b6919-1835-4c14-a05e-d55b05c1dfef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-28243", "type": "seen", "source": "https://t.me/cibsecurity/24274", "content": "\u203c CVE-2020-28243 \u203c\n\nAn issue was discovered in SaltStack Salt before 3002.5. The minion's restartcheck is vulnerable to command injection via a crafted process name. This allows for a local privilege escalation by any user able to create a files on the minion in a non-blacklisted directory.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-02-27T07:39:58.000000Z"}, {"uuid": "7b260b11-b4cd-46e1-a045-45d379870be6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-28243", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/2817", "content": "#Threat_Research\n1. The little bug that couldn\u2019t: Securing OpenSSL...\nhttps://github.blog/2021-02-25-the-little-bug-that-couldnt-securing-openssl\n2. CVE-2020-28243 - SaltStack Minion LPE\nhttps://sec.stealthcopter.com/cve-2020-28243\nhttps://www.immersivelabs.com/resources/blog/why-so-salty-local-privilege-escalation-on-saltstack-minions\n]-> PoC Exploit in SaltStack Minion:\nhttps://github.com/stealthcopter/CVE-2020-28243", "creation_timestamp": "2021-03-04T11:55:21.000000Z"}]}