CVE-2020-16846
critical-risk
Published 2020-11-06
An issue was discovered in SaltStack Salt through 3002. Sending crafted web requests to the Salt API, with the SSH client enabled, can result in shell injection.
Do I need to act?
!
94.4% chance of exploitation in next 30 days
EPSS score — higher than 6% of all CVEs
!
CISA KEV: actively exploited in the wild
On the Known Exploited Vulnerabilities catalog — federal agencies must patch
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.8/10
Critical
NETWORK
/ LOW complexity
Affected Products (7)
Affected Vendors
References (29)
Release Notes
https://github.com/saltstack/salt/releases
Third Party Advisory
https://security.gentoo.org/glsa/202011-13
Mailing List
https://www.debian.org/security/2021/dsa-4837
Third Party Advisory
https://www.zerodayinitiative.com/advisories/ZDI-20-1379/
Third Party Advisory
https://www.zerodayinitiative.com/advisories/ZDI-20-1380/
Third Party Advisory
https://www.zerodayinitiative.com/advisories/ZDI-20-1381/
Third Party Advisory
https://www.zerodayinitiative.com/advisories/ZDI-20-1382/
Third Party Advisory
https://www.zerodayinitiative.com/advisories/ZDI-20-1383/
Release Notes
https://github.com/saltstack/salt/releases
and 9 more references
73
/ 100
critical-risk
Severity
32/34 · Critical
Exploitability
27/34 · High
Exposure
14/34 · Moderate