CVE-2022-22941 : An issue was discovered in SaltStack Salt in versions before 3002.8, 3003.4, 300

An issue was discovered in SaltStack Salt in versions before 3002.8, 3003.4, 3004.1. When configured as a Master-of-Masters, with a publisher_acl, if a user configured in the publisher_acl targets any minion connected to the Syndic, the Salt Master incorrectly interpreted no valid targets as valid, allowing configured users to target any of the minions connected to the syndic with their configured commands. This requires a syndic master combined with publisher_acl configured on the Master-of-Masters, allowing users specified in the publisher_acl to bypass permissions, publishing authorized commands to any configured minion.

Published 2022-03-29 17:15:15

Updated 2023-12-21 18:44:31

Source VMware

View at NVD, CVE.org

Products affected by CVE-2022-22941

Saltstack » Salt
Versions from including (>=) 3004 and before (<) 3004.1
cpe:2.3:a:saltstack:salt:*:*:*:*:*:*:*:*
Matching versions
Saltstack » Salt
Versions from including (>=) 3003 and before (<) 3003.4
cpe:2.3:a:saltstack:salt:*:*:*:*:*:*:*:*
Matching versions
Saltstack » Salt
Versions from including (>=) 3002 and before (<) 3002.8
cpe:2.3:a:saltstack:salt:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2022-22941

EPSS FAQ

0.01%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 1 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2022-22941

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
6.0	MEDIUM	AV:N/AC:M/Au:S/C:P/I:P/A:P	6.8	6.4	NIST
Access Vector: Network Access Complexity: Medium Authentication: Single Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
8.8	HIGH	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H	2.8	5.9	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2022-22941

CWE-732 Incorrect Permission Assignment for Critical Resource

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2022-22941

https://saltproject.io/security_announcements/salt-security-advisory-release/,

Salt Security Advisory Release – Salt Project
Vendor Advisory

CVEs referencing this url
https://repo.saltproject.io/

Salt Project Package Repo
Product

CVEs referencing this url
https://saltproject.io/security_announcements/salt-security-advisory-release/%2C

Broken Link

CVEs referencing this url
https://github.com/saltstack/salt/releases%2C

Page not found · GitHub · GitHub
Broken Link

CVEs referencing this url
https://github.com/saltstack/salt/releases,

Page not found · GitHub · GitHub
Broken Link;Release Notes;Third Party Advisory

CVEs referencing this url
https://security.gentoo.org/glsa/202310-22

Salt: Multiple Vulnerabilities (GLSA 202310-22) — Gentoo security
Third Party Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2022-22941

Products affected by CVE-2022-22941

Exploit prediction scoring system (EPSS) score for CVE-2022-22941

CVSS scores for CVE-2022-22941

CWE ids for CVE-2022-22941

References for CVE-2022-22941