CVE-2020-17490
published 2020-11-06CVE-2020-17490: The TLS module within SaltStack Salt through 3002 creates certificates with weak file permissions.
PriorityP422medium5.5CVSS 3.1
AVLACLPRLUINSUCHINAN
EPSS
0.41%
32.6th percentile
The TLS module within SaltStack Salt through 3002 creates certificates with weak file permissions.
Affected
40 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| saltstack | salt | < 2015.8.10 | 2015.8.10 |
| saltstack | salt | — | — |
| saltstack | salt | >= 0 < 2015.8.10 | 2015.8.10 |
| saltstack | salt | >= 0 < 2015.8.13 | 2015.8.13 |
| saltstack | salt | >= 0 < 2015.8.8+ds-1ubuntu0.1+esm2 | 2015.8.8+ds-1ubuntu0.1+esm2 |
| saltstack | salt | >= 0 < 2017.7.4+dfsg1-1ubuntu18.04.2+esm1 | 2017.7.4+dfsg1-1ubuntu18.04.2+esm1 |
| saltstack | salt | >= 2015.8.11 < 2015.8.13 | 2015.8.13 |
| saltstack | salt | >= 2015.8.11 < 2015.8.13 | 2015.8.13 |
| saltstack | salt | >= 2016.11.0 < 2016.11.3 | 2016.11.3 |
| saltstack | salt | >= 2016.11.0 < 2016.11.3 | 2016.11.3 |
| saltstack | salt | >= 2016.11.0 < 2016.11.10 | 2016.11.10 |
| saltstack | salt | >= 2016.11.4 < 2016.11.6 | 2016.11.6 |
| saltstack | salt | >= 2016.11.4 < 2016.11.6 | 2016.11.6 |
| saltstack | salt | >= 2016.11.7 < 2016.11.10 | 2016.11.10 |
| saltstack | salt | >= 2016.11.7 < 2016.11.10 | 2016.11.10 |
| saltstack | salt | >= 2016.3.0 < 2016.3.4 | 2016.3.4 |
| saltstack | salt | >= 2016.3.0 < 2016.3.4 | 2016.3.4 |
| saltstack | salt | >= 2016.3.0 < 2016.3.8 | 2016.3.8 |
| saltstack | salt | >= 2016.3.5 < 2016.3.6 | 2016.3.6 |
| saltstack | salt | >= 2016.3.5 < 2016.3.6 | 2016.3.6 |
| saltstack | salt | >= 2016.3.7 < 2016.3.8 | 2016.3.8 |
| saltstack | salt | >= 2016.3.7 < 2016.3.8 | 2016.3.8 |
| saltstack | salt | >= 2017.5.0 < 2017.7.4 | 2017.7.4 |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
nvdv2.02.1LOWAV:L/AC:L/Au:N/C:P/I:N/A:N
osv9.8CRITICAL
vendor_ubuntu9.8CRITICAL
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
salt vulnerabilities
osv·2024-08-08·CVSS 9.8
CVE-2020-16846 [CRITICAL] salt vulnerabilities
salt vulnerabilities
It was discovered that Salt incorrectly handled crafted web requests.
A remote attacker could possibly use this issue to run arbitrary
commands. (CVE-2020-16846)
It was discovered that Salt incorrectly created certificates with weak
file permissions. (CVE-2020-17490)
It was discovered that Salt incorrectly handled credential validation.
A remote attacker could possibly use this issue to bypass authentication.
(CVE-2020-25592)
It was discovered that Salt incorrectly handled crafted process names.
An attacker could possibly use this issue to run arbitrary commands.
This issue only affected Ubuntu 18.04 LTS. (CVE-2020-28243)
It was discovered that Salt incorrectly handled validation of SSL/TLS
certificates. A remote attacker could possibly use this issue to spoof
a t
OSV
SaltStack Salt Allows creating certificates with weak file permissions
osv·2022-05-24
CVE-2020-17490 [MEDIUM] SaltStack Salt Allows creating certificates with weak file permissions
SaltStack Salt Allows creating certificates with weak file permissions
The TLS module within SaltStack Salt through 3002 creates certificates with weak file permissions.
GHSA
SaltStack Salt Allows creating certificates with weak file permissions
ghsa·2022-05-24
CVE-2020-17490 [MEDIUM] CWE-732 SaltStack Salt Allows creating certificates with weak file permissions
SaltStack Salt Allows creating certificates with weak file permissions
The TLS module within SaltStack Salt through 3002 creates certificates with weak file permissions.
OSV
CVE-2020-17490: The TLS module within SaltStack Salt through 3002 creates certificates with weak file permissions
osv·2020-11-06
CVE-2020-17490 CVE-2020-17490: The TLS module within SaltStack Salt through 3002 creates certificates with weak file permissions
The TLS module within SaltStack Salt through 3002 creates certificates with weak file permissions.
Ubuntu
Salt vulnerabilities
vendor_ubuntu·2024-08-08·CVSS 9.8
CVE-2020-16846 [CRITICAL] Salt vulnerabilities
Title: Salt vulnerabilities
Summary: Several security issues were fixed in Salt.
It was discovered that Salt incorrectly handled crafted web requests.
A remote attacker could possibly use this issue to run arbitrary
commands. (CVE-2020-16846)
It was discovered that Salt incorrectly created certificates with weak
file permissions. (CVE-2020-17490)
It was discovered that Salt incorrectly handled credential validation.
A remote attacker could possibly use this issue to bypass authentication.
(CVE-2020-25592)
It was discovered that Salt incorrectly handled crafted process names.
An attacker could possibly use this issue to run arbitrary commands.
This issue only affected Ubuntu 18.04 LTS. (CVE-2020-28243)
It was discovered that Salt incorrectly handled validation of SSL/TLS
certificates.
Red Hat
salt: creates certificates with weak file permissions
vendor_redhat·2020-11-03·CVSS 5.5
CVE-2020-17490 [MEDIUM] CWE-732 salt: creates certificates with weak file permissions
salt: creates certificates with weak file permissions
The TLS module within SaltStack Salt through 3002 creates certificates with weak file permissions.
A flaw was found in Salt. The TLS module within SaltStack Salt through 3002 creates certificates with weak file permissions. The highest threat from this vulnerability is to confidentiality.
Statement: Red Hat Ceph Storage 2 shipped salt for the usage of Red Hat Storage Console 2(RHSCON-2), which required salt to administrate ceph nodes. RHSCON-2 has reached End Of Life, hence salt is no longer used and supported. Therefore, the salt package provided by Red Hat Ceph Storage 2 has been marked as 'will not fix'.
Package: salt (Red Hat Ceph Storage 2) - Will not fix
No detection rules found.
No public exploits indexed.
http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00029.htmlhttps://docs.saltstack.com/en/latest/topics/releases/index.html#latest-branch-releasehttps://lists.debian.org/debian-lts-announce/2020/12/msg00007.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TPOGB2F6XUAIGFDTOCQDNB2VIXFXHWMA/https://security.gentoo.org/glsa/202011-13https://www.debian.org/security/2021/dsa-4837https://www.saltstack.com/blog/on-november-3-2020-saltstack-publicly-disclosed-three-new-cves/http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00029.htmlhttps://docs.saltstack.com/en/latest/topics/releases/index.html#latest-branch-releasehttps://lists.debian.org/debian-lts-announce/2020/12/msg00007.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TPOGB2F6XUAIGFDTOCQDNB2VIXFXHWMA/https://security.gentoo.org/glsa/202011-13https://www.debian.org/security/2021/dsa-4837https://www.saltstack.com/blog/on-november-3-2020-saltstack-publicly-disclosed-three-new-cves/
2020-11-06
Published