Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.6
CVSSv2

CVE-2015-1839

Published: 13/04/2017 Updated: 19/04/2017
CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9
CVSS v3 Base Score: 5.3 | Impact Score: 3.4 | Exploitability Score: 1.8
VMScore: 409
Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Salt

Vulnerability Summary

modules/chef.py in SaltStack prior to 2014.7.4 does not properly handle files in /tmp.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

saltstack salt

fedoraproject fedora 23

Vendor Advisories

Red Hat: CVE-2015-1839
modules/chefpy in SaltStack before 201474 does not properly handle files in /tmp ...

References

CWE-19https://github.com/saltstack/salt/commit/b49d0d4b5ca5c6f31f03e2caf97cef1088eeed81https://github.com/saltstack/salt/commit/22d2f7a1ec93300c34e8c42d14ec39d51e610b5chttps://docs.saltstack.com/en/latest/topics/releases/2014.7.4.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=1212788http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175568.htmlhttps://nvd.nist.govhttps://access.redhat.com/security/cve/cve-2015-1839
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946CVE-2024-30309CVE-2024-4761CVE-2024-30051type confusionmemory leakCVE-2024-30293reflected XSSCVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook