CVE-2017-8109
published 2017-04-25CVE-2017-8109: The salt-ssh minion code in SaltStack Salt 2016.11 before 2016.11.4 copied over configuration from the Salt Master without adjusting permissions, which might…
PriorityP336high7.8CVSS 3.0
AVLACLPRLUINSUCHIHAH
EPSS
0.43%
34.5th percentile
The salt-ssh minion code in SaltStack Salt 2016.11 before 2016.11.4 copied over configuration from the Salt Master without adjusting permissions, which might leak credentials to local attackers on configured minions (clients).
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| saltstack | salt | — | — |
| saltstack | salt | — | — |
| saltstack | salt | — | — |
| saltstack | salt | — | — |
| saltstack | salt | — | — |
| saltstack | salt | >= 2016.11 < 2016.11.4 | 2016.11.4 |
CVSS provenance
nvdv3.07.8HIGHCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.02.1LOWAV:L/AC:L/Au:N/C:P/I:N/A:N
vendor_redhat7.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
SaltStack Salt Information Exposure
ghsa·2022-05-17
CVE-2017-8109 [HIGH] CWE-200 SaltStack Salt Information Exposure
SaltStack Salt Information Exposure
The salt-ssh minion code in SaltStack Salt 2016.11 before 2016.11.4 copied over configuration from the Salt Master without adjusting permissions, which might leak credentials to local attackers on configured minions (clients).
OSV
SaltStack Salt Information Exposure
osv·2022-05-17
CVE-2017-8109 [HIGH] SaltStack Salt Information Exposure
SaltStack Salt Information Exposure
The salt-ssh minion code in SaltStack Salt 2016.11 before 2016.11.4 copied over configuration from the Salt Master without adjusting permissions, which might leak credentials to local attackers on configured minions (clients).
OSV
CVE-2017-8109: The salt-ssh minion code in SaltStack Salt 2016
osv·2017-04-25
CVE-2017-8109 CVE-2017-8109: The salt-ssh minion code in SaltStack Salt 2016
The salt-ssh minion code in SaltStack Salt 2016.11 before 2016.11.4 copied over configuration from the Salt Master without adjusting permissions, which might leak credentials to local attackers on configured minions (clients).
Red Hat
salt: Minion code copies over configuration from the Salt Master without adjusting permissions
vendor_redhat·2017-04-25·CVSS 7.8
CVE-2017-8109 [HIGH] CWE-732 salt: Minion code copies over configuration from the Salt Master without adjusting permissions
salt: Minion code copies over configuration from the Salt Master without adjusting permissions
The salt-ssh minion code in SaltStack Salt 2016.11 before 2016.11.4 copied over configuration from the Salt Master without adjusting permissions, which might leak credentials to local attackers on configured minions (clients).
Statement: This issue did not affect the versions of the salt as shipped with Red Hat Ceph Storage 1.3, Red Hat Ceph Storage 2, and Red Hat Storage Console 2 as salt-ssh is not used with these products.
Package: salt (Red Hat Ceph Storage 1.3) - Not affected
Package: salt (Red Hat Ceph Storage 2) - Not affected
Package: salt (Red Hat Storage Console 2) - Not affected
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2017-8109 salt: Minion code copies over configuration from the Salt Master without adjusting permissions
bugzilla·2017-04-26·CVSS 7.8
CVE-2017-8109 [HIGH] CVE-2017-8109 salt: Minion code copies over configuration from the Salt Master without adjusting permissions
CVE-2017-8109 salt: Minion code copies over configuration from the Salt Master without adjusting permissions
The salt-ssh minion code in SaltStack Salt copies over configuration from the Salt Master without adjusting permissions, which might leak credentials to local attackers on configured minions (clients).
Upstream bug:
https://github.com/saltstack/salt/issues/40075
Upstream patch:
https://github.com/saltstack/salt/pull/40609/commits/6e34c2b5e5e849302af7ccd00509929c3809c658
References:
https://docs.saltstack.com/en/latest/topics/releases/2016.11.4.html
Discussion:
Created salt tracking bugs for this issue:
Affects: epel-all [bug 1418350]
---
Statement:
This issue did not affect the versions of the salt as shipped with Red Hat Ceph Storage 1.3, Red Hat Ceph Storage 2, and Re
Bugzilla
CVE-2017-5192 CVE-2017-5200 CVE-2017-8109 salt: various flaws [epel-all]
bugzilla·2017-02-01·CVSS 8.8
CVE-2017-5192 [HIGH] CVE-2017-5192 CVE-2017-5200 CVE-2017-8109 salt: various flaws [epel-all]
CVE-2017-5192 CVE-2017-5200 CVE-2017-8109 salt: various flaws [epel-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of epel-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions of Fed
http://www.securityfocus.com/bid/98095https://bugzilla.suse.com/show_bug.cgi?id=1035912https://docs.saltstack.com/en/latest/topics/releases/2016.11.4.htmlhttps://github.com/saltstack/salt/issues/40075https://github.com/saltstack/salt/pull/40609https://github.com/saltstack/salt/pull/40609/commits/6e34c2b5e5e849302af7ccd00509929c3809c658http://www.securityfocus.com/bid/98095https://bugzilla.suse.com/show_bug.cgi?id=1035912https://docs.saltstack.com/en/latest/topics/releases/2016.11.4.htmlhttps://github.com/saltstack/salt/issues/40075https://github.com/saltstack/salt/pull/40609https://github.com/saltstack/salt/pull/40609/commits/6e34c2b5e5e849302af7ccd00509929c3809c658
2017-04-25
Published