CVE-2017-14695

Published: Oct 24, 2017Modified: May 13, 2026

9.8

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.3.8, 2016.11.x before 2016.11.8, and 2017.7.x before 2017.7.2 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-12791.

Affected (15)

Products: Saltstack: Salt

1 product

Configuration A

15 vulnerable

Vulnerable Software	Affected Versions
Saltstack Salt	Up to 2016.3.7
Saltstack Salt	Version 2016.11.0
Saltstack Salt	Version 2016.11.1
Saltstack Salt	Version 2016.11.1 rc1
Saltstack Salt	Version 2016.11.1 rc2
Saltstack Salt	Version 2016.11.2
Saltstack Salt	Version 2016.11.3
Saltstack Salt	Version 2016.11.4
Saltstack Salt	Version 2016.11.5
Saltstack Salt	Version 2016.11.6
Saltstack Salt	Version 2016.11.7
Saltstack Salt	Version 2016.11
Saltstack Salt	Version 2017.7.0
Saltstack Salt	Version 2017.7.0 rc1
Saltstack Salt	Version 2017.7.1

Related CWEs

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

References (14)

http://lists.opensuse.org/opensuse-updates/2017-10/msg00073.html

Source: cve@mitre.org

Issue TrackingRelease NotesThird Party Advisory

http://lists.opensuse.org/opensuse-updates/2017-10/msg00075.html

Source: cve@mitre.org

Issue TrackingRelease NotesThird Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=1500748

Source: cve@mitre.org

Issue TrackingRelease NotesThird Party Advisory

https://docs.saltstack.com/en/latest/topics/releases/2016.11.8.html

Source: cve@mitre.org

Issue TrackingRelease NotesVendor Advisory

https://docs.saltstack.com/en/latest/topics/releases/2016.3.8.html

Source: cve@mitre.org

Issue TrackingRelease NotesVendor Advisory

https://docs.saltstack.com/en/latest/topics/releases/2017.7.2.html

Source: cve@mitre.org

Issue TrackingRelease NotesVendor Advisory

https://github.com/saltstack/salt/commit/80d90307b07b3703428ecbb7c8bb468e28a9ae6d

Source: cve@mitre.org

Issue TrackingPatchThird Party Advisory

http://lists.opensuse.org/opensuse-updates/2017-10/msg00073.html

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingRelease NotesThird Party Advisory

http://lists.opensuse.org/opensuse-updates/2017-10/msg00075.html

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingRelease NotesThird Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=1500748

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingRelease NotesThird Party Advisory

https://docs.saltstack.com/en/latest/topics/releases/2016.11.8.html

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingRelease NotesVendor Advisory

https://docs.saltstack.com/en/latest/topics/releases/2016.3.8.html

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingRelease NotesVendor Advisory

https://docs.saltstack.com/en/latest/topics/releases/2017.7.2.html

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingRelease NotesVendor Advisory

https://github.com/saltstack/salt/commit/80d90307b07b3703428ecbb7c8bb468e28a9ae6d

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingPatchThird Party Advisory

Timeline

No history available yet.