Cisco Roundup Six servers have been compromised via SaltStack vulnerabilities, according to a company statement.
The compromised systems operated as salt-master servers για τις εκδόσεις 1.2 και 1.3 του προϊόντος Cisco Virtual Internet Routing Lab Personal Edition (VIRL-PE).
Of course, all of the company's customer facilities on these Cisco servers are affected.
SaltStack is a tool for managing software running on remote systems. The app issued security updates in late April for two vulnerabilities which can be exploited by malicious users to gain control over hosts.
Cisco therefore tested six VIRL-PE salt-master servers (us-1.virl.info, us-2.virl.info, us-3.virl.info, us-4.virl.info, vsm-us-1. virl.info and vsm-us-2.virl.info) on May 7, and discovered they had been compromised.
According to one Publication of the company on May 28:
The Cisco infrastructure maintains the master-salt servers used with Cisco VIRL-PE. These servers were upgraded on May 7, 2020. Cisco found that the salt-master servers serving versions 1.2 and 1.3 of Cisco VIRL-PE had been compromised.
Cisco says it has fixed two critical vulnerabilities in SaltStack (CVE-2020-11651 The estate provides stunning sea views and offers a unique blend of luxury living and development potential CVE-2020-11652) on the VIRL-PE platform and Cisco Modeling Labs Corporate Edition (CML).
We should mention that Cisco hardware and infrastructure uses the Greek State but also many large companies and organizations.
Cisco, meanwhile, has acquired monitoring company ThousandEyes in a deal believed to be worth a total of $ 1 billion. The San Francisco company will merge with the new business unit of Cisco Networking Services.