CVE-2021-25315
salt-api unauthenticated remote code execution
In short
The salt-api service in SUSE Linux Enterprise Server and openSUSE allows attackers to run malicious code on the system without needing a valid password or credentials. This is critical because salt is used to manage and control servers, so unauthorized access means complete system compromise.
Technical detail
CWE-287 improper authentication flaw in salt-api enables unauthenticated remote code execution on SUSE Linux Enterprise Server 15 SP3 and openSUSE Tumbleweed. The vulnerability permits local attackers to bypass credential validation and execute arbitrary commands with salt privileges; affected versions are prior to 3002.2-3 (SLES) and 3002.2-2.1 (Tumbleweed).
Summary generated and translated by AI from the official description.
CWE - CWE-287: Improper Authentication vulnerability in SUSE Linux Enterprise Server 15 SP 3; openSUSE Tumbleweed allows local attackers to execute arbitrary code via salt without the need to specify valid credentials. This issue affects: SUSE Linux Enterprise Server 15 SP 3 salt versions prior to 3002.2-3. openSUSE Tumbleweed salt version 3002.2-2.1 and prior versions. This issue affects: SUSE Linux Enterprise Server 15 SP 3 salt versions prior to 3002.2-3. openSUSE Tumbleweed salt version 3002.2-2.1 and prior versions.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →