CVE-2017-14695 — SaltStack Salt Directory traversal vulnerability in minion id validation

Description

Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.3.8, 2016.11.x before 2016.11.8, and 2017.7.x before 2017.7.2 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-12791.

How to fix CVE-2017-14695

To remediate CVE-2017-14695, upgrade the affected package to a fixed version below.

—upgrade to 2016.3.8 or later
—upgrade to 80d90307b07b3703428ecbb7c8bb468e28a9ae6d or later

Is CVE-2017-14695 being exploited?

Low — EPSS is 0.3%, meaning exploitation activity has not been observed at scale.

Affected packages (2)

from 0, < 2016.3.8
from 0, < 80d90307b07b3703428ecbb7c8bb468e28a9ae6d | from 0, < 2016.3.8, >= 2016.11, < 2016.11.8, >= 2017.7, < 2017.7.2

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	CRITICAL9.8	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References (11)

ADVISORYgithub.com/advisories/GHSA-j6gj-pg62-x8j6
ADVISORYnvd.nist.gov/vuln/detail/CVE-2017-14695
PATCHgithub.com/saltstack/salt
WEBlists.opensuse.org/opensuse-updates/2017-10/msg00073.html
WEB