The salt master in Salt (aka SaltStack) 0.11.0 up to and including 0.17.0 does not properly drop group privileges, which makes it easier for remote malicious users to gain privileges.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
saltstack salt 0.16.2 |
||
saltstack salt 0.16.3 |
||
saltstack salt 0.16.4 |
||
saltstack salt 0.17.0 |
||
saltstack salt 0.14.0 |
||
saltstack salt 0.15.1 |
||
saltstack salt 0.11.0 |
||
saltstack salt 0.13.0 |
||
saltstack salt 0.15.0 |
||
saltstack salt 0.16.0 |
||
saltstack salt 0.12.0 |
Vulmon