Medium severity6.7GHSA Advisory· Published Nov 14, 2024· Updated Apr 15, 2026
CVE-2023-34049
CVE-2023-34049
Description
The Salt-SSH pre-flight option copies the script to the target at a predictable path, which allows an attacker to force Salt-SSH to run their script. If an attacker has access to the target VM and knows the path to the pre-flight script before it runs they can ensure Salt-SSH runs their script with the privileges of the user running Salt-SSH. Do not make the copy path on the target predictable and ensure we check return codes of the scp command if the copy fails.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
saltPyPI | < 3005.4 | 3005.4 |
saltPyPI | >= 3006.0rc1, < 3006.4 | 3006.4 |
Affected products
83- ghsa-coords82 versionspkg:pypi/saltpkg:rpm/opensuse/python-simplejson&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/python-simplejson&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/python-simplejson&distro=openSUSE%20Leap%20Micro%205.3pkg:rpm/opensuse/python-simplejson&distro=openSUSE%20Leap%20Micro%205.4pkg:rpm/opensuse/salt&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/salt&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/salt&distro=openSUSE%20Leap%20Micro%205.3pkg:rpm/opensuse/salt&distro=openSUSE%20Leap%20Micro%205.4pkg:rpm/suse/python-simplejson&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/python-simplejson&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOSpkg:rpm/suse/python-simplejson&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/python-simplejson&distro=SUSE%20Linux%20Enterprise%20Micro%205.1pkg:rpm/suse/python-simplejson&distro=SUSE%20Linux%20Enterprise%20Micro%205.2pkg:rpm/suse/python-simplejson&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/python-simplejson&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/python-simplejson&distro=SUSE%20Linux%20Enterprise%20Micro%205.5pkg:rpm/suse/python-simplejson&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4pkg:rpm/suse/python-simplejson&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5pkg:rpm/suse/python-simplejson&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/python-simplejson&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/release-notes-susemanager&distro=SUSE%20Manager%20Server%204.3pkg:rpm/suse/release-notes-susemanager-proxy&distro=SUSE%20Manager%20Proxy%204.3pkg:rpm/suse/saltbundlepy-appdirs&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-certifi&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-cffi&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-dateutil&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-editables&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-exceptiongroup&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-exceptiongroup-test&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-flit-core&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-flit-scm&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-hatchling&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-hatch-vcs&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-hatch-vcs-test&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-iniconfig&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-iniconfig-test&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-lxml&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-more-itertools&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-packaging&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-pathspec&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-pip&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-pluggy&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-pluggy-test&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-py&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-pytest&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-setuptools-scm&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-tomli&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-typing-extensions&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-typing-extensions-test&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-wheel&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundlepy-wheel-test&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/saltbundle-swig&distro=SUSE:EL-9:Update:Products:SaltBundle:Updatepkg:rpm/suse/salt&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOSpkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Micro%205.1pkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Micro%205.2pkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Micro%205.5pkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4pkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5pkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP4pkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP5pkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Transactional%20Server%2015%20SP4pkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Transactional%20Server%2015%20SP5pkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/venv-salt-minion&distro=SUSE%20Manager%20Client%20Tools%2012pkg:rpm/suse/venv-salt-minion&distro=SUSE%20Manager%20Client%20Tools%2015pkg:rpm/suse/venv-salt-minion&distro=SUSE%20Manager%20Client%20Tools%20for%20RHEL,%20Liberty%20and%20Clones%209-CLIENT-TOOLSpkg:rpm/suse/venv-salt-minion&distro=SUSE%20Manager%20Client%20Tools%20for%20SLE%20Micro%205pkg:rpm/suse/venv-salt-minion&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/venv-salt-minion&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/venv-salt-minion&distro=SUSE:EL-9:Update:Products:SaltBundle:Update
< 3005.4+ 81 more
- (no CPE)range: < 3005.4
- (no CPE)range: < 3.17.2-150300.3.4.1
- (no CPE)range: < 3.17.2-150300.3.4.1
- (no CPE)range: < 3.17.2-150300.3.4.1
- (no CPE)range: < 3.17.2-150300.3.4.1
- (no CPE)range: < 3006.0-150400.8.49.2
- (no CPE)range: < 3006.0-150500.4.24.2
- (no CPE)range: < 3006.0-150400.8.49.2
- (no CPE)range: < 3006.0-150400.8.49.2
- (no CPE)range: < 3.17.2-150300.3.4.1
- (no CPE)range: < 3.17.2-150300.3.4.1
- (no CPE)range: < 3.17.2-150300.3.4.1
- (no CPE)range: < 3.17.2-150300.3.4.1
- (no CPE)range: < 3.17.2-150300.3.4.1
- (no CPE)range: < 3.17.2-150300.3.4.1
- (no CPE)range: < 3.17.2-150300.3.4.1
- (no CPE)range: < 3.17.2-150300.3.4.1
- (no CPE)range: < 3.17.2-150300.3.4.1
- (no CPE)range: < 3.17.2-150300.3.4.1
- (no CPE)range: < 3.17.2-150300.3.4.1
- (no CPE)range: < 3.17.2-150300.3.4.1
- (no CPE)range: < 4.3.9-150400.3.90.1
- (no CPE)range: < 4.3.9-150400.3.69.1
- (no CPE)range: < 1.4.4-1.6.1
- (no CPE)range: < 2018.1.18-1.9.1
- (no CPE)range: < 1.15.1-1.9.1
- (no CPE)range: < 2.8.1-1.3.4
- (no CPE)range: < 0.3-1.3.1
- (no CPE)range: < 1.1.0-1.3.1
- (no CPE)range: < 1.1.0-1.3.1
- (no CPE)range: < 3.8.0-1.3.1
- (no CPE)range: < 1.7.0-1.3.1
- (no CPE)range: < 1.13.0-1.3.1
- (no CPE)range: < 0.3.0-1.3.1
- (no CPE)range: < 0.3.0-1.3.1
- (no CPE)range: < 2.0.0-1.3.1
- (no CPE)range: < 2.0.0-1.3.1
- (no CPE)range: < 4.9.3-1.12.1
- (no CPE)range: < 8.10.0-1.6.1
- (no CPE)range: < 23.1-1.6.1
- (no CPE)range: < 0.11.1-1.3.1
- (no CPE)range: < 20.2.4-1.6.1
- (no CPE)range: < 1.0.0-1.6.4
- (no CPE)range: < 1.0.0-1.6.1
- (no CPE)range: < 1.10.0-1.9.4
- (no CPE)range: < 7.3.2-1.6.1
- (no CPE)range: < 7.1.0-1.6.1
- (no CPE)range: < 1.2.3-1.3.1
- (no CPE)range: < 4.5.0-1.3.1
- (no CPE)range: < 4.5.0-1.3.1
- (no CPE)range: < 0.40.0-1.3.1
- (no CPE)range: < 0.40.0-1.3.1
- (no CPE)range: < 4.1.1-1.9.1
- (no CPE)range: < 3006.0-150300.53.65.2
- (no CPE)range: < 3006.0-150100.112.1
- (no CPE)range: < 3006.0-150200.113.1
- (no CPE)range: < 3006.0-150300.53.65.2
- (no CPE)range: < 3006.0-150300.53.65.2
- (no CPE)range: < 3006.0-150300.53.65.2
- (no CPE)range: < 3006.0-150300.53.65.2
- (no CPE)range: < 3006.0-150400.8.49.2
- (no CPE)range: < 3006.0-150400.8.49.2
- (no CPE)range: < 3006.0-150500.4.24.2
- (no CPE)range: < 3006.0-150400.8.49.2
- (no CPE)range: < 3006.0-150500.4.24.2
- (no CPE)range: < 3006.0-150400.8.49.2
- (no CPE)range: < 3006.0-150500.4.24.2
- (no CPE)range: < 3006.0-150400.8.49.2
- (no CPE)range: < 3006.0-150500.4.24.2
- (no CPE)range: < 3006.0-150100.112.1
- (no CPE)range: < 3006.0-150200.113.1
- (no CPE)range: < 3006.0-150300.53.65.2
- (no CPE)range: < 3006.0-150100.112.1
- (no CPE)range: < 3006.0-150200.113.1
- (no CPE)range: < 3006.0-150300.53.65.2
- (no CPE)range: < 3006.0-3.46.2
- (no CPE)range: < 3006.0-150000.3.48.2
- (no CPE)range: < 3006.0-1.30.3
- (no CPE)range: < 3006.0-150000.3.48.2
- (no CPE)range: < 3006.0-150000.3.48.2
- (no CPE)range: < 3006.0-150000.3.48.2
- (no CPE)range: < 3006.0-1.30.3
Patches
Vulnerability mechanics
References
6- github.com/advisories/GHSA-4277-m35q-7c9wghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2023-34049ghsaADVISORY
- github.com/saltstack/salt/commit/286d55eb5a6e6bf9428405bdf5632b419bdf8444ghsaWEB
- github.com/saltstack/salt/commit/7a14112f2a16ce70e3c3e1862c92e37af5f2c7a4ghsaWEB
- saltproject.io/security-announcements/2023-10-27-advisoryghsaWEB
- saltproject.io/security-announcements/2023-10-27-advisory/nvd
News mentions
0No linked articles in our index yet.