VDB

CVE-2021-25281

CVE-2021-25281 PUBLISHED

An issue was discovered in through SaltStack Salt before 3002.5. salt-api does not honor eauth credentials for the wheel_async client. Thus, an attacker can remotely run any wheel modules on the master.

EPSS 93.85% · 99.9th percentile

Risk Scores

EPSS Score
93.85%
99.9th percentile

Affected Products

VendorProductVersions
Ubuntu:Pro:16.04:LTSsalt2015.8.7+ds-1, 2015.8.8+ds-1, 2015.8.8+ds-1ubuntu0.1~esm1
Ubuntu:Pro:14.04:LTSsalt0.17.2-2, 0.17.4-2, 0.17.2-3
Ubuntu:22.04:LTSsalt*, 0, 3002.6+dfsg1-4
Ubuntu:Pro:18.04:LTSsalt*, 2017.7.4+dfsg1-1ubuntu18.04.2, 2017.7.4+dfsg1-1ubuntu18.04.1

Exploit Intelligence

…and 125 more exploits

Timeline

  • Feb 26, 2021 CVE Published
  • Mar 31, 2021 PoC Published
  • Apr 2, 2021 PoC Published
  • Apr 14, 2021 EPSS Score
  • May 14, 2021 CrowdSec Sighting
  • Sep 14, 2021 EPSS Score
  • Sep 16, 2021 EPSS Score
  • Nov 11, 2021 EPSS Score
  • Nov 20, 2021 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Oct 25, 2022 CrowdSec Sighting
  • Nov 16, 2022 CrowdSec Sighting

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›