CVE-2020-28243
Severity Score
7.8
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
2
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
An issue was discovered in SaltStack Salt before 3002.5. The minion's restartcheck is vulnerable to command injection via a crafted process name. This allows for a local privilege escalation by any user able to create a files on the minion in a non-blacklisted directory.
Se detectó un problema en SaltStack Salt versiones anteriores a 3002.5. La comprobación de reinicio del minion es vulnerable a una inyección de comandos por medio de un nombre de proceso diseñado. Esto permite una escalada de privilegios local por parte de cualquier usuario capaz de crear archivos en el minion en un directorio no incluido en la lista negra
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2020-11-06 CVE Reserved
- 2021-02-27 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-04 CVE Updated
- 2024-08-04 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection')
CAPEC
References (11)
| URL | Tag | Source |
|---|---|---|
| https://lists.debian.org/debian-lts-announce/2021/11/msg00009.html | Mailing List |
|
| https://lists.debian.org/debian-lts-announce/2022/01/msg00000.html | Mailing List |
|
| URL | Date | SRC |
|---|---|---|
| https://github.com/stealthcopter/CVE-2020-28243 | 2024-08-04 | |
| https://sec.stealthcopter.com/cve-2020-28243 | 2024-08-04 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Saltstack Search vendor "Saltstack" | Salt Search vendor "Saltstack" for product "Salt" | < 2015.8.10 Search vendor "Saltstack" for product "Salt" and version " < 2015.8.10" | - |
Affected
| ||||||
| Saltstack Search vendor "Saltstack" | Salt Search vendor "Saltstack" for product "Salt" | >= 2015.8.11 < 2015.8.13 Search vendor "Saltstack" for product "Salt" and version " >= 2015.8.11 < 2015.8.13" | - |
Affected
| ||||||
| Saltstack Search vendor "Saltstack" | Salt Search vendor "Saltstack" for product "Salt" | >= 2016.3.0 < 2016.3.4 Search vendor "Saltstack" for product "Salt" and version " >= 2016.3.0 < 2016.3.4" | - |
Affected
| ||||||
| Saltstack Search vendor "Saltstack" | Salt Search vendor "Saltstack" for product "Salt" | >= 2016.3.5 < 2016.3.6 Search vendor "Saltstack" for product "Salt" and version " >= 2016.3.5 < 2016.3.6" | - |
Affected
| ||||||
| Saltstack Search vendor "Saltstack" | Salt Search vendor "Saltstack" for product "Salt" | >= 2016.3.7 < 2016.3.8 Search vendor "Saltstack" for product "Salt" and version " >= 2016.3.7 < 2016.3.8" | - |
Affected
| ||||||
| Saltstack Search vendor "Saltstack" | Salt Search vendor "Saltstack" for product "Salt" | >= 2016.3.9 < 2016.11.3 Search vendor "Saltstack" for product "Salt" and version " >= 2016.3.9 < 2016.11.3" | - |
Affected
| ||||||
| Saltstack Search vendor "Saltstack" | Salt Search vendor "Saltstack" for product "Salt" | >= 2016.11.4 < 2016.11.5 Search vendor "Saltstack" for product "Salt" and version " >= 2016.11.4 < 2016.11.5" | - |
Affected
| ||||||
| Saltstack Search vendor "Saltstack" | Salt Search vendor "Saltstack" for product "Salt" | >= 2016.11.7 < 2016.11.10 Search vendor "Saltstack" for product "Salt" and version " >= 2016.11.7 < 2016.11.10" | - |
Affected
| ||||||
| Saltstack Search vendor "Saltstack" | Salt Search vendor "Saltstack" for product "Salt" | >= 2017.5.0 < 2017.7.8 Search vendor "Saltstack" for product "Salt" and version " >= 2017.5.0 < 2017.7.8" | - |
Affected
| ||||||
| Saltstack Search vendor "Saltstack" | Salt Search vendor "Saltstack" for product "Salt" | >= 2018.2.0 <= 2018.3.5 Search vendor "Saltstack" for product "Salt" and version " >= 2018.2.0 <= 2018.3.5" | - |
Affected
| ||||||
| Saltstack Search vendor "Saltstack" | Salt Search vendor "Saltstack" for product "Salt" | >= 2019.2.0 < 2019.2.5 Search vendor "Saltstack" for product "Salt" and version " >= 2019.2.0 < 2019.2.5" | - |
Affected
| ||||||
| Saltstack Search vendor "Saltstack" | Salt Search vendor "Saltstack" for product "Salt" | >= 2019.2.6 < 2019.2.8 Search vendor "Saltstack" for product "Salt" and version " >= 2019.2.6 < 2019.2.8" | - |
Affected
| ||||||
| Saltstack Search vendor "Saltstack" | Salt Search vendor "Saltstack" for product "Salt" | >= 3000 < 3000.6 Search vendor "Saltstack" for product "Salt" and version " >= 3000 < 3000.6" | - |
Affected
| ||||||
| Saltstack Search vendor "Saltstack" | Salt Search vendor "Saltstack" for product "Salt" | >= 3001 < 3001.4 Search vendor "Saltstack" for product "Salt" and version " >= 3001 < 3001.4" | - |
Affected
| ||||||
| Saltstack Search vendor "Saltstack" | Salt Search vendor "Saltstack" for product "Salt" | >= 3002 < 3002.5 Search vendor "Saltstack" for product "Salt" and version " >= 3002 < 3002.5" | - |
Affected
| ||||||
| Fedoraproject Search vendor "Fedoraproject" | Fedora Search vendor "Fedoraproject" for product "Fedora" | 32 Search vendor "Fedoraproject" for product "Fedora" and version "32" | - |
Affected
| ||||||
| Fedoraproject Search vendor "Fedoraproject" | Fedora Search vendor "Fedoraproject" for product "Fedora" | 33 Search vendor "Fedoraproject" for product "Fedora" and version "33" | - |
Affected
| ||||||
| Fedoraproject Search vendor "Fedoraproject" | Fedora Search vendor "Fedoraproject" for product "Fedora" | 34 Search vendor "Fedoraproject" for product "Fedora" and version "34" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Debian Linux Search vendor "Debian" for product "Debian Linux" | 9.0 Search vendor "Debian" for product "Debian Linux" and version "9.0" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Debian Linux Search vendor "Debian" for product "Debian Linux" | 10.0 Search vendor "Debian" for product "Debian Linux" and version "10.0" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Debian Linux Search vendor "Debian" for product "Debian Linux" | 11.0 Search vendor "Debian" for product "Debian Linux" and version "11.0" | - |
Affected
| ||||||