CVE-2022-22967
published 2022-06-23CVE-2022-22967: An issue was discovered in SaltStack Salt in versions before 3002.9, 3003.5, 3004.2. PAM auth fails to reject locked accounts, which allows a previously…
PriorityP352high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
1.88%
76.8th percentile
An issue was discovered in SaltStack Salt in versions before 3002.9, 3003.5, 3004.2. PAM auth fails to reject locked accounts, which allows a previously authorized user whose account is locked still run Salt commands when their account is locked. This affects both local shell accounts with an active session and salt-api users that authenticate via PAM eauth.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| saltstack | salt | < 3002.9 | 3002.9 |
| saltstack | salt | >= 0 < 3002.9 | 3002.9 |
| saltstack | salt | >= 3003 < 3003.5 | 3003.5 |
| saltstack | salt | >= 3003.0 < 3003.5 | 3003.5 |
| saltstack | salt | >= 3004 < 3004.2 | 3004.2 |
| saltstack | salt | >= 3004.0 < 3004.2 | 3004.2 |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.06.5MEDIUMAV:N/AC:L/Au:S/C:P/I:P/A:P
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Salt's PAM auth fails to reject locked accounts
osv·2022-06-25
CVE-2022-22967 [HIGH] Salt's PAM auth fails to reject locked accounts
Salt's PAM auth fails to reject locked accounts
An issue was discovered in SaltStack Salt in versions before 3002.9, 3003.5, 3004.2. PAM auth fails to reject locked accounts, which allows a previously authorized user whose account is locked still run Salt commands when their account is locked. This affects both local shell accounts with an active session and salt-api users that authenticate via PAM eauth.
GHSA
Salt's PAM auth fails to reject locked accounts
ghsa·2022-06-25
CVE-2022-22967 [HIGH] CWE-863 Salt's PAM auth fails to reject locked accounts
Salt's PAM auth fails to reject locked accounts
An issue was discovered in SaltStack Salt in versions before 3002.9, 3003.5, 3004.2. PAM auth fails to reject locked accounts, which allows a previously authorized user whose account is locked still run Salt commands when their account is locked. This affects both local shell accounts with an active session and salt-api users that authenticate via PAM eauth.
OSV
CVE-2022-22967: An issue was discovered in SaltStack Salt in versions before 3002
osv·2022-06-23
CVE-2022-22967 CVE-2022-22967: An issue was discovered in SaltStack Salt in versions before 3002
An issue was discovered in SaltStack Salt in versions before 3002.9, 3003.5, 3004.2. PAM auth fails to reject locked accounts, which allows a previously authorized user whose account is locked still run Salt commands when their account is locked. This affects both local shell accounts with an active session and salt-api users that authenticate via PAM eauth.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://repo.saltproject.io/https://saltproject.io/security_announcements/salt-security-advisory-release-june-21st-2022/%2Chttps://security.gentoo.org/glsa/202310-22https://repo.saltproject.io/https://saltproject.io/security_announcements/salt-security-advisory-release-june-21st-2022/%2Chttps://security.gentoo.org/glsa/202310-22
2022-06-23
Published