Denial Of Service (DoS)

🗓️ 25 Oct 2017 03:01:26Reported by Veracode Vulnerability DatabaseType

veracode🔗 sca.analysiscenter.veracode.com👁 18 Views

Salt software vulnerability to DoS attacks with null-byte id authentication request

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 27
NVD	CVE-2017-14696	24 Oct 201717:29	–	nvd
Debian CVE	CVE-2017-14696	24 Oct 201717:29	–	debiancve
Cvelist	CVE-2017-14696	24 Oct 201717:00	–	cvelist
OSV	PYSEC-2017-37	24 Oct 201717:29	–	osv
OSV	SaltStack Salt Denial of Service via a crafted authentication request	17 May 202200:23	–	osv
OSV	CVE-2017-14696	24 Oct 201717:29	–	osv
OSV	salt vulnerabilities	15 Mar 202120:11	–	osv
RedhatCVE	CVE-2017-14696	17 Oct 201717:26	–	redhatcve
CVE	CVE-2017-14696	24 Oct 201717:29	–	cve
Prion	Cross site request forgery (csrf)	24 Oct 201717:29	–	prion

Vulners

Node

saltstack saltRange2016.11.0rc1–2016.11.7python

saltstack saltRange2017.7.0rc1–2017.7.1python

saltstack saltRange2015.8.0rc1–2016.3.7python

Source	Link
github	www.github.com/saltstack/salt/commit/5f8b5e1a0f23fe0f2be5b3c3e04199b57a53db5b
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
lists	www.lists.opensuse.org/opensuse-updates/2017-10/msg00073.html
lists	www.lists.opensuse.org/opensuse-updates/2017-10/msg00075.html
docs	www.docs.saltstack.com/en/latest/topics/releases/2016.11.8.html
docs	www.docs.saltstack.com/en/latest/topics/releases/2016.3.8.html
docs	www.docs.saltstack.com/en/latest/topics/releases/2017.7.2.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

25 Oct 2017 03:26Current

8.3High risk

Vulners AI Score8.3

CVSS25

CVSS37.5

EPSS0.02661