Cisco said attackers have been able to compromise its servers after exploiting two known, critical SaltStack vulnerabilities. The flaws exist in the open-source Salt management framework, which are used in Cisco network-tooling products. Two Cisco products incorporate a version of SaltStack that is running the vulnerable salt-master service. The bugs were first made public by the Salt Open Core team on April 29. They include an authentication bypass issue, tracked as CVE-2020-11651, and a directory-traversal flaw.
Source: https://threatpost.com/hackers-compromise-cisco-servers-saltstack/156091/