CVE Vulnerabilities

CVE-2013-4439

Published: Nov 05, 2013 | Modified: Nov 07, 2013
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.9 MEDIUM
AV:N/AC:M/Au:S/C:P/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Salt (aka SaltStack) before 0.15.0 through 0.17.0 allows remote authenticated minions to impersonate arbitrary minions via a crafted minion with a valid key.

Affected Software

Name Vendor Start Version End Version
Salt Saltstack 0.17.0 0.17.0
Salt Saltstack 0.16.3 0.16.3
Salt Saltstack 0.15.1 0.15.1
Salt Saltstack 0.16.2 0.16.2
Salt Saltstack 0.16.4 0.16.4
Salt Saltstack 0.15.0 0.15.0
Salt Saltstack 0.16.0 0.16.0

References