High severityNVD Advisory· Published Apr 23, 2021· Updated Aug 3, 2024
CVE-2021-31607
CVE-2021-31607
Description
In SaltStack Salt 2016.9 through 3002.6, a command injection vulnerability exists in the snapper module that allows for local privilege escalation on a minion. The attack requires that a file is created with a pathname that is backed up by snapper, and that the master calls the snapper.diff function (which executes popen unsafely).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
saltPyPI | >= 2016.11.0, < 3003rc1 | 3003rc1 |
Affected products
105- SaltStack/SaltStack Saltdescription
- ghsa-coords104 versionspkg:pypi/saltpkg:rpm/opensuse/python-distro&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/salt&distro=openSUSE%20Leap%2015.2pkg:rpm/opensuse/salt&distro=openSUSE%20Leap%2015.3pkg:rpm/suse/cobbler&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/cobbler&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/golang-github-prometheus-node_exporter&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/golang-github-wrouesnel-postgres_exporter&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-CLIENT-TOOLSpkg:rpm/suse/golang-github-wrouesnel-postgres_exporter&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-CLIENT-TOOLSpkg:rpm/suse/grafana-formula&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/grafana-formula&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/mgr-cfg&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-CLIENT-TOOLSpkg:rpm/suse/mgr-cfg&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-CLIENT-TOOLSpkg:rpm/suse/mgr-custom-info&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-CLIENT-TOOLSpkg:rpm/suse/mgr-custom-info&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-CLIENT-TOOLSpkg:rpm/suse/mgr-daemon&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-CLIENT-TOOLSpkg:rpm/suse/mgr-daemon&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-CLIENT-TOOLSpkg:rpm/suse/mgr-osad&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-CLIENT-TOOLSpkg:rpm/suse/mgr-osad&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-CLIENT-TOOLSpkg:rpm/suse/mgr-push&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-CLIENT-TOOLSpkg:rpm/suse/mgr-push&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-CLIENT-TOOLSpkg:rpm/suse/mgr-virtualization&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-CLIENT-TOOLSpkg:rpm/suse/mgr-virtualization&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-CLIENT-TOOLSpkg:rpm/suse/patterns-suse-manager&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/patterns-suse-manager&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/prometheus-exporters-formula&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/prometheus-exporters-formula&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/pxe-default-image-sle15&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/py26-compat-salt&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/py26-compat-salt&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/py27-compat-salt&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/py27-compat-salt&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/python-distro&distro=SUSE%20Linux%20Enterprise%20Micro%205.0pkg:rpm/suse/python-distro&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2pkg:rpm/suse/python-distro&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3pkg:rpm/suse/python-distro&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%202%2015%20SP2pkg:rpm/suse/python-distro&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%202%2015%20SP3pkg:rpm/suse/rhnlib&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-CLIENT-TOOLSpkg:rpm/suse/rhnlib&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-CLIENT-TOOLSpkg:rpm/suse/salt&distro=SUSE%20Enterprise%20Storage%206pkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOSpkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Micro%205.0pkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Advanced%20Systems%20Management%2012pkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2pkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3pkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP2pkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP3pkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Transactional%20Server%2015%20SP2pkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Transactional%20Server%2015%20SP3pkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-CLIENT-TOOLSpkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-CLIENT-TOOLSpkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCLpkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015pkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/salt&distro=SUSE%20Manager%20Client%20Tools%2012pkg:rpm/suse/salt&distro=SUSE%20Manager%20Proxy%204.0pkg:rpm/suse/salt&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.0pkg:rpm/suse/salt&distro=SUSE%20Manager%20Server%204.0pkg:rpm/suse/spacecmd&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-CLIENT-TOOLSpkg:rpm/suse/spacecmd&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-CLIENT-TOOLSpkg:rpm/suse/spacewalk-admin&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/spacewalk-backend&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/spacewalk-backend&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/spacewalk-branding&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/spacewalk-certs-tools&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/spacewalk-client-tools&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-CLIENT-TOOLSpkg:rpm/suse/spacewalk-client-tools&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-CLIENT-TOOLSpkg:rpm/suse/spacewalk-java&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/spacewalk-java&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/spacewalk-koan&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-CLIENT-TOOLSpkg:rpm/suse/spacewalk-koan&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-CLIENT-TOOLSpkg:rpm/suse/spacewalk-oscap&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-CLIENT-TOOLSpkg:rpm/suse/spacewalk-oscap&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-CLIENT-TOOLSpkg:rpm/suse/spacewalk-remote-utils&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-CLIENT-TOOLSpkg:rpm/suse/spacewalk-remote-utils&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-CLIENT-TOOLSpkg:rpm/suse/spacewalk-utils&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/spacewalk-utils&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/spacewalk-web&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/spacewalk-web&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/supportutils-plugin-susemanager-client&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-CLIENT-TOOLSpkg:rpm/suse/supportutils-plugin-susemanager-client&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-CLIENT-TOOLSpkg:rpm/suse/susemanager-build-keys&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/susemanager&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/susemanager&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/susemanager-doc-indexes&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/susemanager-doc-indexes&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/susemanager-docs_en&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/susemanager-docs_en&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/susemanager-schema&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/susemanager-sls&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/susemanager-sls&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/susemanager-sync-data&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/suseRegisterInfo&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-CLIENT-TOOLSpkg:rpm/suse/suseRegisterInfo&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-CLIENT-TOOLSpkg:rpm/suse/tika-core&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/tika-core&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/uyuni-common-libs&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-CLIENT-TOOLSpkg:rpm/suse/uyuni-common-libs&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-CLIENT-TOOLSpkg:rpm/suse/uyuni-common-libs&distro=SUSE%20Manager%20Server%20Module%204.1
>= 2016.11.0, < 3003rc1+ 103 more
- (no CPE)range: >= 2016.11.0, < 3003rc1
- (no CPE)range: < 1.5.0-3.5.1
- (no CPE)range: < 3002.2-lp152.3.36.1
- (no CPE)range: < 3002.2-8.41.8.1
- (no CPE)range: < 3.0.0+git20190806.32c4bae0-7.22.3
- (no CPE)range: < 3.0.0+git20190806.32c4bae0-5.11.1
- (no CPE)range: < 1.1.2-3.6.5
- (no CPE)range: < 0.4.7-5.12.1
- (no CPE)range: < 0.4.7-5.12.1
- (no CPE)range: < 0.2.3-4.16.3
- (no CPE)range: < 0.4.1-3.9.2
- (no CPE)range: < 4.2.2-5.15.2
- (no CPE)range: < 4.2.2-5.15.2
- (no CPE)range: < 4.2.1-5.9.2
- (no CPE)range: < 4.2.1-5.9.2
- (no CPE)range: < 4.2.7-5.26.1
- (no CPE)range: < 4.2.7-5.26.1
- (no CPE)range: < 4.2.5-5.27.2
- (no CPE)range: < 4.2.5-5.27.2
- (no CPE)range: < 4.2.2-5.9.2
- (no CPE)range: < 4.2.2-5.9.2
- (no CPE)range: < 4.2.1-5.17.3
- (no CPE)range: < 4.2.1-5.17.3
- (no CPE)range: < 4.0-9.19.3
- (no CPE)range: < 4.1-6.9.2
- (no CPE)range: < 0.7.6-3.19.3
- (no CPE)range: < 0.9.1-3.22.1
- (no CPE)range: < 4.0.1-20210621145802
- (no CPE)range: < 2016.11.10-10.28.3
- (no CPE)range: < 2016.11.10-6.14.2
- (no CPE)range: < 3000.3-4.3.3
- (no CPE)range: < 3000.3-6.3.2
- (no CPE)range: < 1.5.0-3.5.1
- (no CPE)range: < 1.5.0-3.5.1
- (no CPE)range: < 1.5.0-3.5.1
- (no CPE)range: < 1.5.0-3.5.1
- (no CPE)range: < 1.5.0-3.5.1
- (no CPE)range: < 4.2.3-12.31.1
- (no CPE)range: < 4.2.3-12.31.1
- (no CPE)range: < 3002.2-37.1
- (no CPE)range: < 3002.2-37.1
- (no CPE)range: < 3002.2-37.1
- (no CPE)range: < 3002.2-8.41.8.1
- (no CPE)range: < 3002.2-8.41.8.1
- (no CPE)range: < 3002.2-37.1
- (no CPE)range: < 3000-46.142.2
- (no CPE)range: < 3002.2-37.1
- (no CPE)range: < 3002.2-8.41.8.1
- (no CPE)range: < 3002.2-37.1
- (no CPE)range: < 3002.2-8.41.8.1
- (no CPE)range: < 3002.2-37.1
- (no CPE)range: < 3002.2-8.41.8.1
- (no CPE)range: < 2016.11.10-43.75.1
- (no CPE)range: < 2016.11.10-43.75.1
- (no CPE)range: < 3002.2-37.1
- (no CPE)range: < 3002.2-37.1
- (no CPE)range: < 3002.2-8.41.8.1
- (no CPE)range: < 3002.2-8.41.8.1
- (no CPE)range: < 3002.2-37.1
- (no CPE)range: < 3000-46.142.2
- (no CPE)range: < 3002.2-37.1
- (no CPE)range: < 3002.2-37.1
- (no CPE)range: < 3002.2-37.1
- (no CPE)range: < 4.2.8-18.84.1
- (no CPE)range: < 4.2.8-18.84.1
- (no CPE)range: < 4.1.9-3.12.2
- (no CPE)range: < 4.0.38-3.47.4
- (no CPE)range: < 4.1.25-4.32.6
- (no CPE)range: < 4.1.12-3.12.2
- (no CPE)range: < 4.1.17-3.17.2
- (no CPE)range: < 4.2.10-27.50.1
- (no CPE)range: < 4.2.10-27.50.1
- (no CPE)range: < 4.0.44-3.57.5
- (no CPE)range: < 4.1.36-3.44.1
- (no CPE)range: < 4.2.3-9.21.1
- (no CPE)range: < 4.2.3-9.21.1
- (no CPE)range: < 4.2.1-6.15.3
- (no CPE)range: < 4.2.1-6.15.3
- (no CPE)range: < 4.2.1-6.18.2
- (no CPE)range: < 4.2.1-6.18.2
- (no CPE)range: < 4.0.21-3.30.3
- (no CPE)range: < 4.1.16-3.18.2
- (no CPE)range: < 4.0.28-3.45.1
- (no CPE)range: < 4.1.26-3.24.8
- (no CPE)range: < 4.2.2-9.21.1
- (no CPE)range: < 4.2.2-9.21.1
- (no CPE)range: < 15.2.4-3.17.1
- (no CPE)range: < 4.0.34-3.52.3
- (no CPE)range: < 4.1.26-3.25.1
- (no CPE)range: < 4.0-10.36.4
- (no CPE)range: < 4.1-11.34.8
- (no CPE)range: < 4.0-10.36.3
- (no CPE)range: < 4.1-11.34.2
- (no CPE)range: < 4.1.21-3.30.6
- (no CPE)range: < 4.0.35-3.48.3
- (no CPE)range: < 4.1.28-3.42.1
- (no CPE)range: < 4.1.14-3.23.2
- (no CPE)range: < 4.2.3-6.15.1
- (no CPE)range: < 4.2.3-6.15.1
- (no CPE)range: < 1.26-3.6.3
- (no CPE)range: < 1.26-3.5.2
- (no CPE)range: < 4.2.3-5.12.1
- (no CPE)range: < 4.2.3-5.12.1
- (no CPE)range: < 4.1.8-3.9.1
Patches
Vulnerability mechanics
References
20- github.com/advisories/GHSA-hcjf-rp5h-g5h3ghsaADVISORY
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6BUWUF5VTENNP2ZYZBVFKPSUHLKLUBD5/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ACVT7M4YLZRLWWQ6SGRK3C6TOF4FXOXT/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LDKMAJXYFHM4USVX3H5V2GCCBGASWUSM/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MBAHHSGZLEJRCG4DX6J4RBWJAAWH55RQ/mitrevendor-advisory
- nvd.nist.gov/vuln/detail/CVE-2021-31607ghsaADVISORY
- security.gentoo.org/glsa/202310-22ghsavendor-advisoryWEB
- www.debian.org/security/2021/dsa-5011ghsavendor-advisoryWEB
- github.com/pypa/advisory-database/tree/main/vulns/salt/PYSEC-2021-56.yamlghsaWEB
- lists.debian.org/debian-lts-announce/2021/11/msg00009.htmlghsamailing-listWEB
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6BUWUF5VTENNP2ZYZBVFKPSUHLKLUBD5ghsaWEB
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ACVT7M4YLZRLWWQ6SGRK3C6TOF4FXOXTghsaWEB
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LDKMAJXYFHM4USVX3H5V2GCCBGASWUSMghsaWEB
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MBAHHSGZLEJRCG4DX6J4RBWJAAWH55RQghsaWEB
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6BUWUF5VTENNP2ZYZBVFKPSUHLKLUBD5ghsaWEB
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ACVT7M4YLZRLWWQ6SGRK3C6TOF4FXOXTghsaWEB
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LDKMAJXYFHM4USVX3H5V2GCCBGASWUSMghsaWEB
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MBAHHSGZLEJRCG4DX6J4RBWJAAWH55RQghsaWEB
- sec.stealthcopter.com/saltstack-snapper-minion-privledge-escaltionghsaWEB
- sec.stealthcopter.com/saltstack-snapper-minion-privledge-escaltion/mitre
News mentions
0No linked articles in our index yet.