Saltstack Salt Vulnérabilités

Chronologie

Version

30026
2019.24
3002.02
3002.12
3002.22

Contre-mesures

Official Fix16
Temporary Fix0
Workaround0
Unavailable0
Not Defined10

Exploitabilité

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined26

Vecteur d'accès

Not Defined0
Physical0
Local4
Adjacent14
Network8

Authentification

Not Defined0
High0
Low14
None12

Interaction de l'utilisateur

Not Defined0
Required0
None26

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤42
≤50
≤64
≤70
≤814
≤96
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤42
≤50
≤64
≤72
≤812
≤96
≤100

VulDB

≤10
≤20
≤30
≤42
≤52
≤612
≤74
≤86
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤52
≤62
≤70
≤80
≤94
≤1016

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Fournisseur

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 jour

<1k2
<2k24
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k26
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter le volume du marché

🔴 CTI Activités

Affected Versions (12): 2018.3, 2019.0, 2019.1, 2019.2, 3002, 3002.0, 3002.1, 3002.2, 3002.3, 3002.4, 3002.5, 3002.6

PubliéBaseTempVulnérabilité0dayAujourd'huiExpConCTICVE
23/04/20215.35.3SaltStack Salt Snapper Module elévation de privilèges$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-31607
27/02/20217.67.3SaltStack Salt SSH Client elévation de privilèges$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-3197
27/02/20217.67.3SaltStack Salt API thin.py salt.utils.thin.gen_thin elévation de privilèges$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-3148
27/02/20217.37.0SaltStack Salt eauth Token authentification faible$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-3144
27/02/20213.93.8SaltStack Salt salt.modules.cmdmod divulgation de l'information$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-25284
27/02/20217.67.3SaltStack Salt Jinja Renderer elévation de privilèges$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-25283
27/02/20217.37.0SaltStack Salt salt.wheel.pillar_roots.write directory traversal$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-25282
27/02/20218.07.7SaltStack Salt salt-api authentification faible$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-25281
27/02/20215.65.4SaltStack Salt authentification faible$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-35662
27/02/20215.65.4SaltStack Salt authentification faible$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-28972

15 plus d'entrées ne sont pas affichées

🔒 Login Required

You need to signup and login to see more of the remaining 15 results.

PrécédentAperçuSuivant

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!