SB2018112740 - Path traversal in salt (Alpine package)

Description

This security bulletin contains information about 1 vulnerability.

1) Path traversal (CVE-ID: CVE-2018-15750)

CWE-ID: CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The vulnerability exists due to insufficient validation of user-supplied input processed by the salt-api component. A remote attacker can send a query request that submits malicious input, conduct directory traversal attack and determine what files exist on the system, and this information can be used to conduct further attacks.

Remediation

Install update from vendor's website.

References

• https://git.alpinelinux.org/aports/commit/?id=3651514355fa1b390a1fb67d4b7b0bbfb114604e
• https://git.alpinelinux.org/aports/commit/?id=df12aa925fb3f2af102355f89a8ff1e8ef335a73