7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
45.3%
A vulnerability in SaltStack Salt’s configuration management and remote operations execution system is related to
receiving multiple bad packets to the server equal to the number of worker threads, Salt will stop responding
back requests before restarting. Exploitation of the vulnerability could allow an attacker acting
remotely to cause a denial of service
A vulnerability in the OpenSSL cryptographic library is related to insufficient validation of user inputted
data in the POLY1305 MAC (message authentication code) implementation. Exploitation of the vulnerability could
allow an attacker to execute a denial-of-service attack by sending specially
specially crafted input data and corrupt MM registers on a Windows 64 platform
Vulnerability in load_pem_pkcs7_certificates() and load_der_pkcs7_certificates() functions of the cryptography package
is related to NULL pointer dereferencing. Exploitation of the vulnerability could allow an attacker,
acting remotely, to cause a denial of service
Vulnerability in EVP_EncryptInit_ex2(), EVP_DecryptInit_ex2(), EVP_CipherInit_ex2() functions of the OpenSSL cryptography library is related to manipulation of the NULL pointer.
OpenSSL library is related to manipulation of the keylen/ivelens argument. Exploitation of the vulnerability could
Allow an attacker acting remotely to cause a denial of service
A vulnerability in the SaltStack Salt configuration management and remote operations execution system is related to the
Lack of service data protection. Exploitation of the vulnerability could allow an attacker to disclose
protected information
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
45.3%