ZDNet

SaltStack revises partial patch for command injection, privilege escalation vulnerability

The Salt Project has issued a secondary fix for a command injection vulnerability after the first attempt to patch the issue partially failed. The vulnerability, tracked as CVE-2020-28243, impacts ...
TechRepublic

How to send commands and states to Linux minions from the Salt controller

Jack Wallen shows you SaltStack can be used to more easily manage the configuration of numerous servers. CrowdStrike Outage Disrupts Microsoft Systems Worldwide Quick Glossary: Cloud Platform Services ...
Bleeping Computer

SaltStack reveals new critical vulnerabilities, patch now

SaltStack, a VMware-owned company, has revealed critical vulnerabilities impacting Salt versions 3002 and prior, with patches available as of today. Salt is an open-source IT infrastructure management ...
Dark Reading

Configuration Issues in SaltStack IT Tool Put Enterprises at Risk

Researchers have identified a template injection technique against the open source SaltStack IT configuration and orchestration platform, as well as common misconfiguration issues, which could allow ...