Primary

Context

Salt Authentication Protocol Downgrade Vulnerability Allowing Minion Impersonation

Vulnerability

A vulnerability exists in Salt that allows a malicious minion to downgrade the authentication protocol and bypass newer security features. This is achieved by using an older request payload format, which can enable minion impersonation and circumvent protections that were introduced to address previous issues. The vulnerability affects Salt versions prior to 3006.17.

Impact

Exploitation of this vulnerability could lead to unauthorized minion impersonation, allowing a malicious minion to bypass security features and potentially manipulate or interfere with the Salt master or other minions.

Remediation

Users can upgrade to Salt version 3006.17 or later, where this vulnerability has been fixed. Instructions for upgrading can be found in the Salt User Guide.

Added: Jan 30, 2026, 7:19 PM

Updated: Jan 30, 2026, 7:19 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

6.6

remediation

0.0

relevance

2.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

6.6

remediation

0.0

relevance

2.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Salt Authentication Protocol Downgrade Vulnerability Allowing Minion Impersonation

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating