CVE-2020-25592 Information

Description

In SaltStack Salt through 3002 salt-netapi improperly validates eauth credentials and tokens. A user can bypass authentication and invoke Salt SSH.

Reference

http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00029.html http://packetstormsecurity.com/files/160039/SaltStack-Salt-REST-API-Arbitrary-Command-Execution.html https://docs.saltstack.com/en/latest/topics/releases/index.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TPOGB2F6XUAIGFDTOCQDNB2VIXFXHWMA/ https://security.gentoo.org/glsa/202011-13 https://www.saltstack.com/blog/on-november-3-2020-saltstack-publicly-disclosed-three-new-cves/