CVE-2015-8034
Description
The state.sls function in Salt before 2015.8.3 uses weak permissions on the cache data, which allows local users to obtain sensitive information by reading the file.
Risk Information
Base Score
3.3
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
EPSS Score
Exploitation Probability
0.035
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2015-8034,CVE-2016-1866,CVE-2016-3176 are affected in VMware SALT 2015.8.2 | Windows |
| Vulnerabilities CVE-2015-8034 are fixed in Python-salt 2015.8.3 | Windows |
| Vulnerabilities CVE-2015-8034 are fixed in Python-salt for linux 2015.8.3 | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234