{"vulnerability": "CVE-2021-31607", "sightings": [{"uuid": "ab86d836-da84-43da-bd30-0a5ecc9f6a11", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-31607", "type": "seen", "source": "https://t.me/reconshell/682", "content": "CVE-2021-31607\n\nIn SaltStack Salt 2016.9 through 3002.6, a command injection vulnerability exists in the snapper module that allows for local privilege escalation on a minion.\n\nhttps://cve.reconshell.com/cve/CVE-2021-31607", "creation_timestamp": "2021-04-23T15:10:12.000000Z"}, {"uuid": "2ab4808a-8e3b-47bb-939a-a533ca763426", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-31607", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/3446", "content": "#exploit\nCVE-2021-31607:\nSaltStack Minion Privledge Escaltion in Snapper Module (PoC)\nhttps://github.com/EdgeSecurityTeam/Vulnerability/blob/main/SaltStack%E5%91%BD%E4%BB%A4%E6%B3%A8%E5%85%A5%E6%BC%8F%E6%B4%9E%EF%BC%88CVE-2021-31607%EF%BC%89.md\n]-> https://sec.stealthcopter.com/saltstack-snapper-minion-privledge-escaltion", "creation_timestamp": "2021-05-24T20:04:04.000000Z"}]}