GitHub Advisory DatabaseGHSA-QX72-Q6W3-QGC7

HistoryMay 24, 2022 - 5:43 p.m.

SaltStack Salt Improper SSL Certificate Validation

2022-05-2417:43:21

CWE-295

GitHub Advisory Database

github.com

5.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

7.4 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

7 High

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

79.1%

JSON

In SaltStack Salt before 3002.5, when authenticating to services using certain modules, the SSL certificate is not always validated.

Affected configurations

Vulners

Node

saltstacksaltRange<3002.3

saltstacksaltRange<3001.5

saltstacksaltRange<3000.7

saltstacksaltRange<2019.2.8

saltstacksaltRange≤2018.3.5

saltstacksaltRange<2017.7.8

saltstacksaltRange<2016.11.10

saltstacksaltRange<2016.11.5

saltstacksaltRange<2015.8.13

CPENameOperatorVersion
saltlt3002.3
saltlt3001.5
saltlt3000.7
saltlt2019.2.8
saltle2018.3.5
saltlt2017.7.8
saltlt2016.11.10
saltlt2016.11.5
saltlt2015.8.13

Name	Operator	Version
salt	lt	3002.3
salt	lt	3001.5
salt	lt	3000.7
salt	lt	2019.2.8
salt	le	2018.3.5
salt	lt	2017.7.8
salt	lt	2016.11.10
salt	lt	2016.11.5
salt	lt	2015.8.13

References

github.com/advisories/GHSA-qx72-q6w3-qgc7

github.com/saltstack/salt/blob/8f9405cf8e6f7d7776d5000841c886dec6d96250/doc/topics/releases/3000.7.rst#L18

github.com/saltstack/salt/blob/8f9405cf8e6f7d7776d5000841c886dec6d96250/doc/topics/releases/3001.5.rst#L18

github.com/saltstack/salt/blob/8f9405cf8e6f7d7776d5000841c886dec6d96250/doc/topics/releases/3002.3.rst#L18

lists.debian.org/debian-lts-announce/2021/11/msg00009.html

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7GRVZ5WAEI3XFN2BDTL6DDXFS5HYSDVB

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FUGLOJ6NXLCIFRD2JTXBYQEMAEF2B6XH

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YOGNT2XWPOYV7YT75DN7PS4GIYWFKOK5

lists.fedoraproject.org/archives/list/[email protected]/message/7GRVZ5WAEI3XFN2BDTL6DDXFS5HYSDVB

lists.fedoraproject.org/archives/list/[email protected]/message/FUGLOJ6NXLCIFRD2JTXBYQEMAEF2B6XH

lists.fedoraproject.org/archives/list/[email protected]/message/YOGNT2XWPOYV7YT75DN7PS4GIYWFKOK5

nvd.nist.gov/vuln/detail/CVE-2020-35662

saltproject.io/security_announcements/active-saltstack-cve-release-2021-feb-25

security.gentoo.org/glsa/202103-01

security.gentoo.org/glsa/202310-22

www.debian.org/security/2021/dsa-5011

5.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

7.4 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

7 High

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

79.1%

JSON

Related for GHSA-QX72-Q6W3-QGC7