• dc

Salty Python! Cloud Server Vulnerability

Recently dire warnings were published in the media regarding critical vulnerabilities in the python based framework SaltStack, used for automation of tasks in cloud infrastructure.

These were published under CVE-2020-11651 AND CVE-2020-11652 and should be patched immediately if you are affected. What I would like to point out is that CVE's are not equal and often exploitation requires specific requirements to be in place in order to gain access.

In the above as Saltstack themselves pointed out the vulnerabilities were caused by poor implementation that did not follow recommended guidelines.

If you are running SaltStack and not sure where to start, you might want to check out this post from Felippe Burk who works for them and discusses how he deploys it.

When exposing systems to the Internet, it should go without saying, that you must take care and follow all recommendations of the service/software provider at a minimum.

Patch as per recommendations and monitor for unusual traffic patterns/activity so you can proactively defend your environment.

3 views0 comments

© 2020 by WSD (West Sealand Digital Limited)