Risk:  Unauthorized User can bypass the authentication.

vulnerable parties: Companies using Cisco products with the vulnerable software release:

  • Cisco Modeling Labs Corporate Edition(CML)
  • Cisco Virtual Internet Routing Lab Personal Edition (VIRL-PE)

Flaw Description: An unauthorized user can access the server contents by bypassing authentication. it can result in mass data breach and other things.

Recommendations: Cisco has released free software updates that address the vulnerabilities described in this advisory. Customers may only install and expect support for software versions and feature sets for which they have purchased a license.

Products vulnerable: The following servers were compromised:

  • us-1.virl.info
  • us-2.virl.info
  • us-3.virl.info
  • us-4.virl.info
  • vsm-us-1.virl.info
  • vsm-us-2.virl.info

Documentation: Documentation can be found here: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-salt-2vx545AG

Whats up with Whatsapp? why should you really worry? its alternatives?find out here.
The social media platform you use is a decently curated box for …
2 million+ CCP members secretly work in US, UK, Australia and India.
What's the fuss about? In the recent report by "The Australian" a data …
U.S Government confirms cybersecurity breach on U.S Treasury.
What happened? The current US government, Trump administration acknowledged that the U.S …
Pfizer, BioNTech Covid-19 vaccine data stolen by Hackers in EMA breach.
What happened? European Medicines Agency (EMA, european medicines regulator) announced that they …
One thought on “Cisco: CVE-2020-11651 SaltStack FrameWork”

Have some thoughts? why not share with us here.

Hey we spotted an adblocker on your browser

Hello, Welcome to Stormbreaker.
We are happy that you opened our website but please disable the adblocker to view further.
Ads are a way this page is generating revenue and making this awesome site and people behind it working. 
Thank you in advanced.
Team Stormbreaker.