CVE-2020-11651 — Vulnetix

Try Vulnetix Request Demo

CVE-2020-11651 PUBLISHED KEV

An issue was discovered in SaltStack Salt before 2019.2.4 and 3000 before 3000.2. The salt-master process ClearFuncs class does not properly validate method calls. This allows a remote user to access some methods without authentication. These methods can be used to retrieve user tokens from the salt master and/or run arbitrary commands on salt minions.

EPSS 94.42% · 100.0th percentile

Risk Scores

EPSS Score

94.42%

100.0th percentile

Affected Products

Vendor	Product	Versions
Ubuntu:16.04:LTS	salt	0, 2015.8.8+ds-1, 2015.8.7+ds-1
Ubuntu:18.04:LTS	salt	*, 0, 2016.11.5+ds-1
Ubuntu:Pro:14.04:LTS	salt	0.17.2-2, 0.17.2-1, 0.17.1+dfsg-1

Timeline

Apr 30, 2020 CVE Published
May 1, 2020 PoC Published
May 3, 2020 PoC Published
May 4, 2020 PoC Published
May 7, 2020 PoC Published
May 12, 2020 PoC Published
May 12, 2020 PoC Published
May 14, 2020 PoC Published
Apr 14, 2021 EPSS Score
Jun 22, 2021 EPSS Score
Aug 23, 2021 EPSS Score
Oct 24, 2021 EPSS Score

References

https://ubuntu.com/security/CVE-2020-11651 third-party-advisory
https://github.com/saltstack/salt/blob/v3000.2_docs/doc/topics/releases/3000.2.rst third-party-advisory
http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00047.html third-party-advisory
https://docs.saltstack.com/en/latest/topics/releases/2019.2.4.html third-party-advisory
https://ubuntu.com/security/notices/USN-4459-1 vendor-advisory
https://www.cve.org/CVERecord?id=CVE-2020-11651 third-party-advisory
https://ubuntu.com/security/notices/USN-6849-1 vendor-advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog third-party-advisory
Multiples vulnérabilités dans SaltStack advisory

Open in Interactive Console →