Security News > 2021 > March > Proof of concept code published for latest Saltstack CVE: Don't be an update laggard

Proof of concept code has been published for a vulnerability in popular data centre security management tool Saltstack, which was discovered after a developer at Immersive Labs found a privilege escalation bug allowing any old user to become root.

The latest CVE is a command injection flaw leading to the priv-esc flaw, according to Immersive Labs, whose Matt Rollings found the vuln.

Not only does it affect all versions of Salt between 2016.3.0rc2 and 3002.2, but it also "Could be performed from within a container to gain command execution as root on the host machine," as Rollings warned.

Minions receive and execute commands from the master Salt device, which is a server that issues commands to the minions connected to it.

Minions occasionally summon a process called restartcheck.

Proof of concept code for the exploit has also been published on Github, meaning orgs using Saltstack really should update it immediately if they haven't already done so.

News URL

https://go.theregister.com/feed/www.theregister.com/2021/03/03/saltstack_cve_poc_exploit_code/