0x00 brief introduction

SaltStack It is a centralized management platform for server infrastructure , Configuration management 、 Remote execution 、 Monitoring and other functions , be based on Python Language implementation , Combine lightweight message queuing （ZeroMQ） And Python Third-party module （Pyzmq、PyCrypto、Pyjinjia2、python-msgpack and PyYAML etc. ） structure . By deploying SaltStack, We can execute commands in batches on tens of millions of servers , Configure centralized management according to different businesses 、 Distribute documents 、 Collect server data 、 Operating system foundation and software package management, etc .

0x01 Summary of vulnerability

CVE-2020-16846 and CVE-2020-25592 Combination can be used without authorization salt-api Interface to execute arbitrary commands .CVE-2020-25592 Any user is allowed to call SSH modular ,CVE-2020-16846 Allow users to execute arbitrary commands .

0x02 Affects version