FreeBSD: VID-50259D8B-243E-11EB-8BAE-B42E99975750 (CVE-2020-25592): salt -- multiple vulnerabilities
Description
Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.
From VID-50259D8B-243E-11EB-8BAE-B42E99975750:
SaltStack reports multiple security vulnerabilities in Salt 3002:
CVE-2020-16846: Prevent shell injections in netapi ssh client.
CVE-2020-17490: Prevent creating world readable private keys with the tls execution module.
CVE-2020-25592: Properly validate eauth credentials and tokens along with their ACLs.
Prior to this change eauth was not properly validated when calling Salt ssh via the salt-api.
Any value for 'eauth' or 'token' would allow a user to bypass authentication and make calls
to Salt ssh.
Solution(s)
- freebsd-upgrade-package-py36-salt
- freebsd-upgrade-package-py37-salt
- freebsd-upgrade-package-py38-salt
- Lightweight Endpoint Agent
- Live Dashboards
- Real Risk Prioritization
- IT-Integrated Remediation Projects
- Cloud, Virtual, and Container Assessment
- Integrated Threat Feeds
- Easy-to-Use RESTful API
- Automation-Assisted Patching
- Automated Containment
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center