Salt peppered with holes? Automation tool vulnerable to auth bypass: Patch now


Urgent if you are using salt in your stack


‘The impact is full remote command execution as root on both master and all minions’
The Salt configuration tool has patched two vulnerabilities whose combined effect was to expose Salt installations to complete control by an attacker. A patch for the issues was released last night, but systems that are not set to auto-update may still be vulnerable.…


Read The Original Article Here

Leave a Reply

Your email address will not be published. Required fields are marked *

This website uses cookies to ensure you get the best experience on our website.

contact THE HUMAN ERROR

For further information on how The Human Error can help you. Fill out some details below, or give us a call.



Tel: 03300 417126

Want FREE UNLIMITED ACCESS?

free Access to all content

our exclusive human error newsletter

we make a 10p donation to rock2recovery
for every signup!

YOU HAVE

YOU NEED

SHINE A LIGHT ON ALL THREATS.
See All The Gaps.
ALERTS IN SECONDS.

Features:

70,000 Thoughts a day.
We Make Mistakes.