CVE-2017-5192

When using the local_batch client from salt-api in SaltStack Salt before 2015.8.13, 2016.3.x before 2016.3.5, and 2016.11.x before 2016.11.2, external authentication is not respected, enabling all authentication to be bypassed.

Weakness

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Affected Software

Name	Vendor	Start Version	End Version
Salt	Saltstack	*	2015.8.12 (including)
Salt	Saltstack	2016.3.0 (including)	2016.3.0 (including)
Salt	Saltstack	2016.3.1 (including)	2016.3.1 (including)
Salt	Saltstack	2016.3.2 (including)	2016.3.2 (including)
Salt	Saltstack	2016.3.3 (including)	2016.3.3 (including)
Salt	Saltstack	2016.3.4 (including)	2016.3.4 (including)
Salt	Saltstack	2016.11.0 (including)	2016.11.0 (including)
Salt	Saltstack	2016.11.1 (including)	2016.11.1 (including)
Salt	Saltstack	2016.11.2 (including)	2016.11.2 (including)
Salt	Ubuntu	artful	*
Salt	Ubuntu	esm-apps/xenial	*
Salt	Ubuntu	esm-infra-legacy/trusty	*
Salt	Ubuntu	trusty	*
Salt	Ubuntu	trusty/esm	*
Salt	Ubuntu	upstream	*
Salt	Ubuntu	xenial	*
Salt	Ubuntu	yakkety	*
Salt	Ubuntu	zesty	*

NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-5192
CWE	https://cwe.mitre.org/data/definitions/287.html

Improper Authentication

Weakness

Affected Software

Potential Mitigations

References

CVE-2017-5192

Improper Authentication

Weakness

Affected Software

Potential Mitigations

Related Attack Patterns

References