PT-2017-7092 · Saltstack+1 · Salt+1

Adam Mariš

·

Published

2017-10-10

·

Updated

2022-05-17

·

CVE-2015-6918

CVSS v3.1

6.3

Medium

VectorAV:N/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions salt versions prior to 2015.5.5
Description The issue causes git usernames and passwords to be leaked to the log.
Recommendations For versions prior to 2015.5.5, update to version 2015.5.5 or later to resolve the issue.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2015-6918
GHSA-Q2X6-8GFJ-HJXW
PYSEC-2017-70
USN-4769-1

Affected Products

Salt
Ubuntu