What is CVE-2021-3197?

CVE-2021-3197 is a vulnerability in N/a. Published 2021-02-27.

Is CVE-2021-3197 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2021-3197

An issue was discovered in SaltStack Salt before 3002.5. The salt-api's ssh client is vulnerable to a shell injection by including ProxyCommand in an argument, or via ssh_options provided in an API request.

EPSS: 0.723 (99.4th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

References

github.com/saltstack/salt/releases
saltproject.io/security_announcements/active-saltstack-cve-release-2021-feb-25/
FEDORA-2021-904a2dbc0c (vendor-advisory)
FEDORA-2021-5756fbf8a6 (vendor-advisory)
FEDORA-2021-43eb5584ad (vendor-advisory)
GLSA-202103-01 (vendor-advisory)
[debian-lts-announce] 20211110 [SECURITY] [DLA 2815-1] salt security update (mailing-list)
DSA-5011 (vendor-advisory)
[debian-lts-announce] 20220103 [SECURITY] [DLA 2480-2] salt regression update (mailing-list)
GLSA-202310-22 (vendor-advisory)

Frequently asked questions

What is CVE-2021-3197?: CVE-2021-3197 is a vulnerability in N/a. Published 2021-02-27.
Is CVE-2021-3197 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.