Lucene search
Veracode Vulnerability DatabaseVERACODE:3685HistoryMar 20, 2017 - 1:53 a.m.
Remote Code Execution (RCE)
2017-03-2001:53:53
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
15
EPSS
0.002
Percentile
61.7%
Salt is vulnerable to remote code execution (RCE). Users of Salt-API and salt-ssh could execute a command on the salt master via a hole when both systems are enabled.
Related
cvelist
cvelist
CVE-2017-5200
2017-09-26 14:00:00
debiancve
debiancve
CVE-2017-5200
2017-09-26 14:29:00
ubuntucve
ubuntucve
CVE-2017-5200
2017-09-26 00:00:00
osv
osv
CVE-2017-5200
2017-09-26 14:29:00
PYSEC-2017-39
2017-09-26 14:29:00
SaltStack Salt arbitrary command execution in Salt-api via ssh_client
2022-05-13 01:46:08
prion
prion
Command injection
2017-09-26 14:29:00
alpinelinux
alpinelinux
CVE-2017-5200
2017-09-26 14:29:00
redhatcve
redhatcve
CVE-2017-5200
2017-02-02 16:47:56
cve
cve
CVE-2017-5200
2017-09-26 14:29:00
github
github
SaltStack Salt arbitrary command execution in Salt-api via ssh_client
2022-05-13 01:46:08
nvd
nvd
CVE-2017-5200
2017-09-26 14:29:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2017:1581-1)
2021-06-09 00:00:00
nessus
nessus
SUSE SLES11 Security Update : Salt (SUSE-SU-2017:1581-1)
2017-06-20 00:00:00
openSUSE Security Update : salt (openSUSE-2018-388)
2018-04-24 00:00:00
Photon OS 1.0: Salt PHSA-2018-1.0-0106
2019-02-07 00:00:00
archlinux
archlinux
[ASA-201701-41] salt: multiple issues
2017-01-31 00:00:00
photon
photon