CVE-2021-25315

A Incorrect Implementation of Authentication Algorithm vulnerability in of SUSE SUSE Linux Enterprise Server 15 SP 3; openSUSE Tumbleweed allows local attackers to execute arbitrary code via salt without the need to specify valid credentials. This issue affects: SUSE SUSE Linux Enterprise Server 15 SP 3 salt versions prior to 3002.2-3. openSUSE Tumbleweed salt version 3002.2-2.1 and prior versions.
References
Link Resource
https://bugzilla.suse.com/show_bug.cgi?id=1182382 Issue Tracking Vendor Advisory
Configurations

Configuration 1


Information

Published : 2021-03-03 10:15

Updated : 2022-10-25 06:08


NVD link : CVE-2021-25315

Mitre link : CVE-2021-25315

CWE