VDB
WID-SEC-W-2023-2844
WID-SEC-W-2023-2844
PUBLISHED
Ein entfernter, authentisierter Angreifer kann eine Schwachstelle in SaltStack Salt ausnutzen, um seine Privilegien zu erhöhen.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian Linux | ||
| SaltStack Salt <= 2016.9_3002.6 | ||
| Gentoo Linux | ||
| SUSE Linux |
Timeline
- Apr 22, 2021 CVE Published
- Nov 6, 2023 CVE Updated
- Apr 4, 2026 Distribution Patch
References
- https://wid.cert-bund.de/.well-known/csaf/white/2021/wid-sec-w-2023-2844.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2844 advisory
- https://www.cybersecurity-help.cz/vdb/SB2023110714 url
- https://lists.suse.com/pipermail/sle-security-updates/2021-May/008810.html url
- https://lists.suse.com/pipermail/sle-security-updates/2021-May/008813.html url
- https://lists.suse.com/pipermail/sle-security-updates/2021-May/008812.html url
- https://lists.suse.com/pipermail/sle-security-updates/2021-May/008811.html url
- https://lists.suse.com/pipermail/sle-security-updates/2021-May/008809.html url
- https://lists.suse.com/pipermail/sle-security-updates/2021-May/008808.html url
- https://lists.suse.com/pipermail/sle-security-updates/2021-May/008807.html url
- https://nvd.nist.gov/vuln/detail/CVE-2021-31607 url
- https://github.com/saltstack/salt/pull/59648 url
- https://lists.suse.com/pipermail/sle-security-updates/2021-June/008992.html url
- https://lists.suse.com/pipermail/sle-security-updates/2021-June/009062.html url
- https://lists.suse.com/pipermail/sle-security-updates/2021-June/009057.html url
- https://lists.suse.com/pipermail/sle-security-updates/2021-June/009055.html url
- https://lists.suse.com/pipermail/sle-security-updates/2021-June/009054.html url
- https://lists.suse.com/pipermail/sle-security-updates/2021-June/009059.html url
- https://lists.suse.com/pipermail/sle-security-updates/2021-June/009060.html url
- https://lists.suse.com/pipermail/sle-security-updates/2021-June/009061.html url
…and 6 more