Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/03 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-20898

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Git Providers can read from the wrong environment because they get the same cache directory base name in Salt masters prior to 3005.2 or 3006.2. Anything that...

7.8CVSS7.1AI score0.00286EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.12 views

openSUSE: Security Advisory for SUSE Manager Client Tools (SUSE-SU-2023:3885-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7AI score0.01328EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.15 views

openSUSE: Security Advisory for salt (SUSE-SU-2023:3863-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS5.9AI score0.01033EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.21 views

openSUSE: Security Advisory for salt (SUSE-SU-2023:3862-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS5.9AI score0.01033EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/09/29 12:0 a.m.25 views

SUSE SLED15: python3-salt / salt / salt-api / salt-bash-completion / salt-cloud / etc (SUSE-SU-2023:3862-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3862-1 advisory. Security issues fixed: - CVE-2023-20897: Fixed DOS in minion return. bsc1214796, bsc1213441 -...

7.8CVSS6.9AI score0.01033EPSS
Exploits0References17
Tenable Nessus
Tenable Nessus
added 2023/09/29 12:0 a.m.24 views

SUSE SLES15: python3-salt / salt / salt-api / salt-bash-completion / salt-cloud / etc (SUSE-SU-2023:3864-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3864-1 advisory. Security issues fixed: - CVE-2023-20897: Fixed DOS in minion return. bsc1214796, bsc1213441 - CVE-2023-20898: Fixed Git Providers c...

7.8CVSS6.9AI score0.01033EPSS
Exploits0References17
OpenVAS
OpenVAS
added 2023/09/29 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2023:3864-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6AI score0.01033EPSS
Exploits0References15
OpenVAS
OpenVAS
added 2023/09/29 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2023:3866-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6AI score0.01033EPSS
Exploits0References15
OpenVAS
OpenVAS
added 2023/09/29 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2023:3865-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6AI score0.01033EPSS
Exploits0References15
OSV
OSV
added 2023/09/28 11:51 a.m.7 views

SUSE-SU-2023:3884-1 Security update for SUSE Manager Salt Bundle

This update fixes the following issues: venv-salt-minion: - Security issues fixed: CVE-2023-20897: Do not fail on bad message pack message bsc1213441 CVE-2023-20898: Fixed Git Providers can read from the wrong environment because they get the same cache directory base name. bsc1214797, bsc1193948...

7.8CVSS6.2AI score0.01033EPSS
Exploits0References15
OSV
OSV
added 2023/09/28 11:47 a.m.7 views

SUSE-SU-2023:3877-1 Security update for SUSE Manager Salt Bundle

This update fixes the following issues: venv-salt-minion: - Security issues fixed: CVE-2023-20897: Do not fail on bad message pack message bsc1213441 CVE-2023-20898: Fixed Git Providers can read from the wrong environment because they get the same cache directory base name. bsc1214797, bsc1193948...

7.8CVSS6.2AI score0.01033EPSS
Exploits0References15
OSV
OSV
added 2023/09/28 11:41 a.m.8 views

SUSE-SU-2023:3866-1 Security update for salt

This update for salt fixes the following issues: Security issues fixed: - CVE-2023-20897: Fixed DOS in minion return. bsc1214796, bsc1213441 - CVE-2023-20898: Fixed Git Providers can read from the wrong environment because they get the same cache directory base name. bsc1214797, bsc1193948 Bugs...

7.8CVSS6.1AI score0.01033EPSS
Exploits0References15
OSV
OSV
added 2023/09/28 11:39 a.m.5 views

SUSE-SU-2023:3863-1 Security update for salt

This update for salt fixes the following issues: Security issues fixed: - CVE-2023-20897: Fixed DOS in minion return. bsc1214796, bsc1213441 - CVE-2023-20898: Fixed Git Providers can read from the wrong environment because they get the same cache directory base name. bsc1214797, bsc1193948 Bugs...

7.8CVSS6.1AI score0.01033EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2023/09/14 12:0 a.m.29 views

Fedora 37 : salt (2023-ac1aa963e4)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-ac1aa963e4 advisory. Fixes for CVE-2023-20897 and CVE-2023-20898 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note...

7.8CVSS6.4AI score0.01033EPSS
Exploits0References3
Circl
Circl
added 2023/09/05 2:16 p.m.9 views

CVE-2023-20898

creationtimestamp| type| source ---|---|--- 2023-09-05 14:16:57+00:00| seen| https://t.me/cibsecurity/69850...

7.8CVSS7.4AI score0.00286EPSS
Exploits0References1
NVD
NVD
added 2023/09/05 11:15 a.m.18 views

CVE-2023-20898

Git Providers can read from the wrong environment because they get the same cache directory base name in Salt masters prior to 3005.2 or 3006.2. Anything that uses Git Providers with different environments can get garbage data or the wrong data, which can lead to wrongful data disclosure, wrongfu...

7.8CVSS5.7AI score0.00286EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2023/09/05 11:15 a.m.20 views

CVE-2023-20898

Git Providers can read from the wrong environment because they get the same cache directory base name in Salt masters prior to 3005.2 or 3006.2. Anything that uses Git Providers with different environments can get garbage data or the wrong data, which can lead to wrongful data disclosure, wrongfu...

7.8CVSS7.1AI score0.00286EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2023/09/05 11:15 a.m.4 views

elita (>=0.60.0 <=0.64.1), slskit (>=2020.1.1 <=2020.9.0) potentially affected by CVE-2023-20898 via salt (>=2014.1.10 <=3001.8.0)

salt PYPI version =2014.1.10, =0.60.0, =2020.1.1, =2020.9.0 Source cves: CVE-2023-20898 Source advisory: OSV:PYSEC-2023-169...

7.8CVSS7AI score0.00286EPSS
Exploits0
Cvelist
Cvelist
added 2023/09/05 10:59 a.m.42 views

CVE-2023-20898

Git Providers can read from the wrong environment because they get the same cache directory base name in Salt masters prior to 3005.2 or 3006.2. Anything that uses Git Providers with different environments can get garbage data or the wrong data, which can lead to wrongful data disclosure, wrongfu...

4.2CVSS7.8AI score0.00286EPSS
Exploits0References2
CVE
CVE
added 2023/09/05 10:59 a.m.374 views

CVE-2023-20898

CVE-2023-20898 affects SaltStack Salt masters prior to 3005.2 or 3006.2. The issue arises when Git Providers with different environments read from the same cache directory base name, allowing garbage or incorrect data to be read, which can lead to data disclosure, wrongful executions, data corrup...

7.8CVSS5.7AI score0.00286EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder