← Back

CVE-2013-4439

nvd nist
Published: Nov 5, 2013Modified: Apr 29, 2026

JSON object

Loading...
4.9
Vector
AV:N/AC:M/Au:S/C:P/I:P/A:N
Exploitability: 6.8 / Impact: 4.9
Source: NVD

Description

Salt (aka SaltStack) before 0.15.0 through 0.17.0 allows remote authenticated minions to impersonate arbitrary minions via a crafted minion with a valid key.

Affected (7)

Products: Saltstack: Salt
Saltstack
1 product
Salt
Configuration A
7 vulnerable
Vulnerable SoftwareAffected Versions
Saltstack
Salt
Version 0.15.0
Salt
Version 0.15.1
Salt
Version 0.16.0
Salt
Version 0.16.2
Salt
Version 0.16.3
Salt
Version 0.16.4
Salt
Version 0.17.0

Related CWEs

CWE-264
CWE-264

References (6)

Source: secalert@redhat.com
PatchVendor Advisory
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.