VMware Salt Stack Unvalidated Input Vulnerability in PKI Directory Management

Vulnerability

A vulnerability exists in VMware Salt Stack that involves unvalidated input being used to create file paths to the PKI directory. This issue arises when 'on-demand pillar' data is requested, leading to unintended overwriting of file contents. The vulnerability is present in Salt versions 3006.12 and 3007.4, and is exploited through the VirtKey class, which automatically accepts Minion authentication keys based on a pre-placed authorization file. This functionality is active by default.

Impact

Exploitation of this vulnerability overwrites file contents in the PKI directory, potentially disrupting Minion authentication processes by corrupting or altering expected authorization files.

Added: Jun 13, 2025, 7:17 AM

Updated: Jun 13, 2025, 7:17 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

VMware Salt Stack Unvalidated Input Vulnerability in PKI Directory Management

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating