CVE-2014-3563

Sažetak

Multiple unspecified vulnerabilities in Salt (aka SaltStack) before 2014.1.10 allow local users to have an unspecified impact via vectors related to temporary file creation in (1) seed.py, (2) salt-ssh, or (3) salt-cloud.

Reference

http://docs.saltstack.com/en/latest/topics/releases/2014.1.10.html
http://seclists.org/oss-sec/2014/q3/428
http://www.securityfocus.com/bid/69319
https://exchange.xforce.ibmcloud.com/vulnerabilities/95392

CVSS

Base:	7.2
Impact:	10.0
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

29-08-2017 - 01:34

Objavljeno

22-08-2014 - 17:55