CVE-2016-3176

medium

Published 2017-01-31 · Modified 2024-04-29

CVSS v3

5.6

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

CVSS v2

4.3

VIR risk

5.6

Description

Salt before 2015.5.10 and 2015.8.x before 2015.8.8, when PAM external authentication is enabled, allows attackers to bypass the configured authentication service by passing an alternate service with a command sent to LocalClient.

Predictions

Exploit likelihood

66%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: cve@mitre.org — https://docs.saltstack.com/en/latest/topics/releases/2015.8.8.html

vendor Authored 2026-05-27

Vendor advisory: cve@mitre.org — https://docs.saltstack.com/en/latest/topics/releases/2015.5.10.html

vendor Authored 2026-05-27

Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2016-3176.html

OS impact

OS	Version	Status	Fixed in
sles		affected

Package impact

Ecosystem	Package	Vulnerable	Fixed
PyPI	salt	`<2015.5.10`	`2015.5.10`
PyPI	salt	`>=2015.8,<2015.8.8`	`2015.8.8`

Application impact

Vendor	Product	Versions
saltstack	salt	`{"endIncluding":"2015.5.9"}`
saltstack	salt	`2015.8.0`
saltstack	salt	`2015.8.1`
saltstack	salt	`2015.8.2`
saltstack	salt	`2015.8.3`
saltstack	salt	`2015.8.4`
saltstack	salt	`2015.8.5`
saltstack	salt	`2015.8.7`

References

CWEs

CWE-287

Verify integrity in audit chain (admin only). AS-IS.