Lucene search
Redhat.comRH:CVE-2017-5200HistoryFeb 02, 2017 - 4:47 p.m.
CVE-2017-5200
2017-02-0216:47:56
redhat.com
access.redhat.com
24
EPSS
0.002
Percentile
61.7%
Salt-api in SaltStack Salt before 2015.8.13, 2016.3.x before 2016.3.5, and 2016.11.x before 2016.11.2 allows arbitrary command execution on a salt-master via Salt’s ssh_client.
Mitigation
Disable salt-api for mitigation.
Related
cvelist
cvelist
CVE-2017-5200
2017-09-26 14:00:00
ubuntucve
ubuntucve
CVE-2017-5200
2017-09-26 00:00:00
debiancve
debiancve
CVE-2017-5200
2017-09-26 14:29:00
osv
osv
CVE-2017-5200
2017-09-26 14:29:00
PYSEC-2017-39
2017-09-26 14:29:00
SaltStack Salt arbitrary command execution in Salt-api via ssh_client
2022-05-13 01:46:08
prion
prion
Command injection
2017-09-26 14:29:00
alpinelinux
alpinelinux
CVE-2017-5200
2017-09-26 14:29:00
github
github
SaltStack Salt arbitrary command execution in Salt-api via ssh_client
2022-05-13 01:46:08
nvd
nvd
CVE-2017-5200
2017-09-26 14:29:00
cve
cve
CVE-2017-5200
2017-09-26 14:29:00
veracode
veracode
Remote Code Execution (RCE)
2017-03-20 01:53:53
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2017:1581-1)
2021-06-09 00:00:00
nessus
nessus
SUSE SLES11 Security Update : Salt (SUSE-SU-2017:1581-1)
2017-06-20 00:00:00
openSUSE Security Update : salt (openSUSE-2018-388)
2018-04-24 00:00:00
Photon OS 1.0: Salt PHSA-2018-1.0-0106
2019-02-07 00:00:00
archlinux
archlinux
[ASA-201701-41] salt: multiple issues
2017-01-31 00:00:00
photon
photon