Vulnerability in N/a
CVE-2020-16846
An issue was discovered in SaltStack Salt through 3002. Sending crafted web requests to the Salt API, with the SSH client enabled, can result in shell injection.
EPSS: 0.944 (100.0th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
CISA KEV (Known Exploited Vulnerabilities)
This CVE is on the CISA KEV catalog, added on . CISA KEV inclusion means CISA has confirmed in-the-wild exploitation; US federal agencies are required to remediate within a published due date.
BOD 22-01 due date: .
Required action: Apply updates per vendor instructions.
Public proof-of-concept exploits
References
- github.com/saltstack/salt/releases (x_refsource_MISC)
- www.saltstack.com/blog/on-november-3-2020-saltstack-publicly-disclosed-three-ne… (x_refsource_CONFIRM)
- FEDORA-2020-9e040bd6dd (vendor-advisory, x_refsource_FEDORA)
- openSUSE-SU-2020:1868 (vendor-advisory, x_refsource_SUSE)
- GLSA-202011-13 (vendor-advisory, x_refsource_GENTOO)
- packetstormsecurity.com/files/160039/SaltStack-Salt-REST-API-Arbitrary-Command-… (x_refsource_MISC)
- www.zerodayinitiative.com/advisories/ZDI-20-1381/ (x_refsource_MISC)
- www.zerodayinitiative.com/advisories/ZDI-20-1383/ (x_refsource_MISC)
- www.zerodayinitiative.com/advisories/ZDI-20-1380/ (x_refsource_MISC)
- www.zerodayinitiative.com/advisories/ZDI-20-1379/ (x_refsource_MISC)
Frequently asked questions
- What is CVE-2020-16846?
- CVE-2020-16846 is a vulnerability in N/a. Published 2020-11-06.
- Is CVE-2020-16846 known to be exploited?
- Yes. CVE-2020-16846 is listed in the CISA Known Exploited Vulnerabilities catalog (added 2021-11-03), indicating it is being actively exploited. 38 public proof-of-concept repositories are indexed.