SaltStack Worker Process Denial-of-Service Vulnerability via Unvalidated File Read Operation

Vulnerability

A denial-of-service vulnerability has been identified in SaltStack's Master component, specifically within the 'pub_ret' method. This issue arises because the 'jid' input value is not properly sanitized before being used to construct a file path for reading operations. An attacker could exploit this vulnerability by targeting filenames that are unlikely to return data, such as pipe nodes in the proc file system.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition on the Salt Master by causing the worker process to hang or become unresponsive while attempting to read from the targeted file.

Added: Jun 13, 2025, 7:17 AM

Updated: Jun 13, 2025, 7:17 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SaltStack Worker Process Denial-of-Service Vulnerability via Unvalidated File Read Operation

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating