Hackers have already begun exploiting SaltStack flaws to breach servers of LineageOS, Ghost, and DigiCert. The flaws could allow an adversary to execute arbitrary code on remote servers deployed in data centers and cloud environments. Both companies have restored the services after taking the servers offline to patch the systems and secure them behind a new firewall. The Salt vulnerability was used to hack into Digicert certificate authority as well as the other certificate transparency logs, CT 1, Yeti, and Nessie were not impacted.
Source: https://thehackernews.com/2020/05/saltstack-rce-exploit.html