Cisco’s VIRL-PE servers which were compromised by attackers are affected by critical SaltStack Vulnerabilities said Cisco.
The flaws exist in the open source Salt management framework which are used in cisco network products. Hackers were able to successfully exploit the bugs which resulted their gained access of the servers.
The servers affected are:
- us-1.virl.info
- us-2.virl.info
- us-3.virl.info
- us-4.virl.info
- vsm-us-1.virl.info
- vsm-us-2.virl.info
Servers were remediated on may 7, said Cisco. The bugs found can be exploited to gain full remote code execution on the servers as root in data centers and cloud.
More information can be found here:
Cisco: CVE-2020-11651 SaltStack FrameWork
Cisco: CVE-2020-11651 SaltStack FrameWork