Vulnerability Description
An issue was discovered in SaltStack Salt in versions before 3002.8, 3003.4, 3004.1. Job publishes and file server replies are susceptible to replay attacks, which can result in an attacker replaying job publishes causing minions to run old jobs. File server replies can also be re-played. A sufficient craft attacker could gain root access on minion under certain scenarios.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Saltstack | Salt | >= 3002, < 3002.8 |
Related Weaknesses (CWE)
References
- https://github.com/saltstack/salt/releases%2CBroken Link
- https://repo.saltproject.io/Product
- https://saltproject.io/security_announcements/salt-security-advisory-release/%2CBroken Link
- https://security.gentoo.org/glsa/202310-22Third Party Advisory
- https://github.com/saltstack/salt/releases%2CBroken Link
- https://repo.saltproject.io/Product
- https://saltproject.io/security_announcements/salt-security-advisory-release/%2CBroken Link
- https://security.gentoo.org/glsa/202310-22Third Party Advisory
FAQ
What is CVE-2022-22936?
CVE-2022-22936 is a vulnerability with a CVSS score of 8.8 (HIGH). An issue was discovered in SaltStack Salt in versions before 3002.8, 3003.4, 3004.1. Job publishes and file server replies are susceptible to replay attacks, which can result in an attacker replaying ...
How severe is CVE-2022-22936?
CVE-2022-22936 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-22936?
Check the references section above for vendor advisories and patch information. Affected products include: Saltstack Salt.