Critical Vulnerabilities in SaltStack Being Exploited on UNH Network

May 11, 2020

by Information Security Services

On May 1st, patches were released for two new critical vulnerabilities in SaltStack (versions prior to 2019.2.4  and 3000.2), which is an open-source remote task and configuration management framework.  These vulnerabilities can be exploited remotely and allow the attacker to take control of the affected resource.  Exploits for these vulnerabilities have been detected in the wild and there are indications that vulnerable instances of SaltStack at UNH are being actively exploited.  Patches for these vulnerabilities should be applied immediately.

 

More information on the vulnerabilities and applicable patches can be found here: https://www.us-cert.gov/ncas/current-activity/2020/05/01/saltstack-patches-critical-vulnerabilities-salt

Bookmark and Share

Archive