CVE-2023-20897
published 2023-09-05CVE-2023-20897: Salt masters prior to 3005.2 or 3006.2 contain a DOS in minion return. After receiving several bad packets on the request server equal to the number of worker…
PriorityP424medium5.3CVSS 3.1
AVNACLPRNUINSUCNINAL
EPSS
1.03%
59.5th percentile
Salt masters prior to 3005.2 or 3006.2 contain a DOS in minion return. After receiving several bad packets on the request server equal to the number of worker threads, the master will become unresponsive to return requests until restarted.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| saltstack | salt | < 3005.2 | 3005.2 |
| saltstack | salt | — | — |
| saltstack | salt | >= 0 < 3005.2 | 3005.2 |
| saltstack | salt | >= 3006.0 < 3006.2 | 3006.2 |
| saltstack | salt | >= 3006.0 < 3006.2 | 3006.2 |
| saltstack | salt | >= 3006.0rc1 < 3006.2 | 3006.2 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Salt vulnerable to denial of service
osv·2023-09-05
CVE-2023-20897 [MEDIUM] Salt vulnerable to denial of service
Salt vulnerable to denial of service
Salt masters prior to 3005.2 or 3006.2 contain a DOS in minion return. After receiving several bad packets on the request server equal to the number of worker threads, the master will become unresponsive to return requests until restarted.
GHSA
Salt vulnerable to denial of service
ghsa·2023-09-05
CVE-2023-20897 [MEDIUM] CWE-404 Salt vulnerable to denial of service
Salt vulnerable to denial of service
Salt masters prior to 3005.2 or 3006.2 contain a DOS in minion return. After receiving several bad packets on the request server equal to the number of worker threads, the master will become unresponsive to return requests until restarted.
OSV
CVE-2023-20897: Salt masters prior to 3005
osv·2023-09-05
CVE-2023-20897 CVE-2023-20897: Salt masters prior to 3005
Salt masters prior to 3005.2 or 3006.2 contain a DOS in minion return. After receiving several bad packets on the request server equal to the number of worker threads, the master will become unresponsive to return requests until restarted.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://lists.fedoraproject.org/archives/list/[email protected]/message/OMWJIHQZXHK6FH2E3IWAZCYIRI7FLVOL/https://saltproject.io/security-announcements/2023-08-10-advisory/https://lists.fedoraproject.org/archives/list/[email protected]/message/OMWJIHQZXHK6FH2E3IWAZCYIRI7FLVOL/https://saltproject.io/security-announcements/2023-08-10-advisory/
2023-09-05
Published