cnvd - cnvd-2017-06715

cnvd-2017-06715

Vulnerability from cnvd

Title: SaltStack Salt存在未明漏洞

Description:

SaltStack Salt（又名SaltStack）是美国SaltStack公司的一套开源的用于管理基础架构的工具。该工具提供配置管理、远程执行等功能，能够管理上万台服务器，具有快速完成数据传递的能力。

SaltStack Salt 2016.11.4之前的版本中的salt-ssh minion代码存在安全漏洞，该漏洞源于程序未设置权限。本地攻击者可利用该漏洞获取配置客户端的证书。

Severity: 低

Patch Name: SaltStack Salt存在未明漏洞的补丁

Patch Description:

SaltStack Salt 2016.11.4之前的版本中的salt-ssh minion代码存在安全漏洞，该漏洞源于程序未设置权限。本地攻击者可利用该漏洞获取配置客户端的证书。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

目前厂商已经发布了升级补丁以修复此安全问题，补丁获取链接： https://docs.saltstack.com/en/latest/topics/releases/2016.11.4.html

Reference: https://bugzilla.suse.com/show_bug.cgi?id=1035912

Impacted products

Name
SaltStack Salt <2016.11.4

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-8109",
      "cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8109"
    }
  },
  "description": "SaltStack Salt\uff08\u53c8\u540dSaltStack\uff09\u662f\u7f8e\u56fdSaltStack\u516c\u53f8\u7684\u4e00\u5957\u5f00\u6e90\u7684\u7528\u4e8e\u7ba1\u7406\u57fa\u7840\u67b6\u6784\u7684\u5de5\u5177\u3002\u8be5\u5de5\u5177\u63d0\u4f9b\u914d\u7f6e\u7ba1\u7406\u3001\u8fdc\u7a0b\u6267\u884c\u7b49\u529f\u80fd\uff0c\u80fd\u591f\u7ba1\u7406\u4e0a\u4e07\u53f0\u670d\u52a1\u5668\uff0c\u5177\u6709\u5feb\u901f\u5b8c\u6210\u6570\u636e\u4f20\u9012\u7684\u80fd\u529b\u3002\r\n\r\nSaltStack Salt 2016.11.4\u4e4b\u524d\u7684\u7248\u672c\u4e2d\u7684salt-ssh minion\u4ee3\u7801\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u8bbe\u7f6e\u6743\u9650\u3002\u672c\u5730\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u914d\u7f6e\u5ba2\u6237\u7aef\u7684\u8bc1\u4e66\u3002",
  "discovererName": "Andreas Stieger",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://docs.saltstack.com/en/latest/topics/releases/2016.11.4.html",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-06715",
  "openTime": "2017-05-16",
  "patchDescription": "SaltStack Salt\uff08\u53c8\u540dSaltStack\uff09\u662f\u7f8e\u56fdSaltStack\u516c\u53f8\u7684\u4e00\u5957\u5f00\u6e90\u7684\u7528\u4e8e\u7ba1\u7406\u57fa\u7840\u67b6\u6784\u7684\u5de5\u5177\u3002\u8be5\u5de5\u5177\u63d0\u4f9b\u914d\u7f6e\u7ba1\u7406\u3001\u8fdc\u7a0b\u6267\u884c\u7b49\u529f\u80fd\uff0c\u80fd\u591f\u7ba1\u7406\u4e0a\u4e07\u53f0\u670d\u52a1\u5668\uff0c\u5177\u6709\u5feb\u901f\u5b8c\u6210\u6570\u636e\u4f20\u9012\u7684\u80fd\u529b\u3002\r\n\r\nSaltStack Salt 2016.11.4\u4e4b\u524d\u7684\u7248\u672c\u4e2d\u7684salt-ssh minion\u4ee3\u7801\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u8bbe\u7f6e\u6743\u9650\u3002\u672c\u5730\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u914d\u7f6e\u5ba2\u6237\u7aef\u7684\u8bc1\u4e66\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "SaltStack Salt\u5b58\u5728\u672a\u660e\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "SaltStack Salt \u003c2016.11.4"
  },
  "referenceLink": "https://bugzilla.suse.com/show_bug.cgi?id=1035912",
  "serverity": "\u4f4e",
  "submitTime": "2017-04-27",
  "title": "SaltStack Salt\u5b58\u5728\u672a\u660e\u6f0f\u6d1e"
}

CVE-2017-8109 (GCVE-0-2017-8109)

Vulnerability from cvelistv5

Published

2017-04-25 17:00

Modified

2024-08-05 16:27

Severity ?

CWE

Summary

The salt-ssh minion code in SaltStack Salt 2016.11 before 2016.11.4 copied over configuration from the Salt Master without adjusting permissions, which might leak credentials to local attackers on configured minions (clients).

References

▼	URL	Tags
	https://github.com/saltstack/salt/pull/40609/commits/6e34c2b5e5e849302af7ccd00509929c3809c658	x_refsource_CONFIRM
	https://github.com/saltstack/salt/issues/40075	x_refsource_CONFIRM
	https://github.com/saltstack/salt/pull/40609	x_refsource_CONFIRM
	https://bugzilla.suse.com/show_bug.cgi?id=1035912	x_refsource_CONFIRM
	http://www.securityfocus.com/bid/98095	vdb-entry, x_refsource_BID
	https://docs.saltstack.com/en/latest/topics/releases/2016.11.4.html	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T16:27:22.195Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/saltstack/salt/pull/40609/commits/6e34c2b5e5e849302af7ccd00509929c3809c658"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/saltstack/salt/issues/40075"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/saltstack/salt/pull/40609"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.suse.com/show_bug.cgi?id=1035912"
          },
          {
            "name": "98095",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/98095"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://docs.saltstack.com/en/latest/topics/releases/2016.11.4.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2017-04-25T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The salt-ssh minion code in SaltStack Salt 2016.11 before 2016.11.4 copied over configuration from the Salt Master without adjusting permissions, which might leak credentials to local attackers on configured minions (clients)."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-05-02T12:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/saltstack/salt/pull/40609/commits/6e34c2b5e5e849302af7ccd00509929c3809c658"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/saltstack/salt/issues/40075"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/saltstack/salt/pull/40609"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.suse.com/show_bug.cgi?id=1035912"
        },
        {
          "name": "98095",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/98095"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://docs.saltstack.com/en/latest/topics/releases/2016.11.4.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2017-8109",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The salt-ssh minion code in SaltStack Salt 2016.11 before 2016.11.4 copied over configuration from the Salt Master without adjusting permissions, which might leak credentials to local attackers on configured minions (clients)."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/saltstack/salt/pull/40609/commits/6e34c2b5e5e849302af7ccd00509929c3809c658",
              "refsource": "CONFIRM",
              "url": "https://github.com/saltstack/salt/pull/40609/commits/6e34c2b5e5e849302af7ccd00509929c3809c658"
            },
            {
              "name": "https://github.com/saltstack/salt/issues/40075",
              "refsource": "CONFIRM",
              "url": "https://github.com/saltstack/salt/issues/40075"
            },
            {
              "name": "https://github.com/saltstack/salt/pull/40609",
              "refsource": "CONFIRM",
              "url": "https://github.com/saltstack/salt/pull/40609"
            },
            {
              "name": "https://bugzilla.suse.com/show_bug.cgi?id=1035912",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.suse.com/show_bug.cgi?id=1035912"
            },
            {
              "name": "98095",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/98095"
            },
            {
              "name": "https://docs.saltstack.com/en/latest/topics/releases/2016.11.4.html",
              "refsource": "CONFIRM",
              "url": "https://docs.saltstack.com/en/latest/topics/releases/2016.11.4.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2017-8109",
    "datePublished": "2017-04-25T17:00:00",
    "dateReserved": "2017-04-25T00:00:00",
    "dateUpdated": "2024-08-05T16:27:22.195Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted