Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2020-11651 PoC — SaltStack Salt 安全漏洞

Source
https://github.com/chef-cft/salt-vulnerabilities
Associated Vulnerability
Title:SaltStack Salt 安全漏洞 (CVE-2020-11651)
Description:An issue was discovered in SaltStack Salt before 2019.2.4 and 3000 before 3000.2. The salt-master process ClearFuncs class does not properly validate method calls. This allows a remote user to access some methods without authentication. These methods can be used to retrieve user tokens from the salt master and/or run arbitrary commands on salt minions.
Description
Checks for CVE-2020-11651 and CVE-2020-11652
Readme
# Salt Stack Profile

This profile will check to make sure your salt installation is patched to a level that protects you from CVE-2020-11651, and CVE-2020-11652.

It does so by checking to ensure the packages salt-api, salt-cloud, salt-master, salt-minion, salt-ssh, salt-syndic, and salt are either version 3000.2 or newer, or 2019.2.4 or newer, or that they do not exist.

It also checks for the presence of the "salt" command in the command line, and if present, checks the standard out of the salt --version command in case salt was installed without a package manager.

## Testing

Tested on:

- CentOS 7
- CentOS 6
File Snapshot

 [4.0K]  /data/pocs/b558372567941400dd69d108cd3a7e1ba7085bc3
├── [4.0K]  controls
│   └── [1.4K]  CVE-2020-11651-2.rb
├── [  36]  inspec.lock
├── [ 226]  inspec.yml
├── [4.0K]  libraries
└── [ 621]  README.md

2 directories, 4 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →