Risk:  Unauthorized User can bypass the authentication.

vulnerable parties: Companies using Cisco products with the vulnerable software release:

  • Cisco Modeling Labs Corporate Edition(CML)
  • Cisco Virtual Internet Routing Lab Personal Edition (VIRL-PE)

Flaw Description: An unauthorized user can access the server contents by bypassing authentication. it can result in mass data breach and other things.

Recommendations: Cisco has released free software updates that address the vulnerabilities described in this advisory. Customers may only install and expect support for software versions and feature sets for which they have purchased a license.

Products vulnerable: The following servers were compromised:

  • us-1.virl.info
  • us-2.virl.info
  • us-3.virl.info
  • us-4.virl.info
  • vsm-us-1.virl.info
  • vsm-us-2.virl.info

Documentation: Documentation can be found here: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-salt-2vx545AG

Online Marketing Company View Media Website hacked and More than 38 million US citizen records exposed.
What happened? According to the reports of CyberNews research team, They have …
Indian Prime Minister Narendra Modi’s website Twitter account hacked. Used for Bitcoin scam.
What happened? Today, on 03rd September, Weird tweets were being posted from …
PUBG banned, Among other 118 mobile apps by Indian Govt. Full list here.
What happened? Earlier in July, Indian government had released a list of …
Taiwan: Around 6000 government email accounts hacked by China sponsored hackers.
We are still assessing the extent of the damage.” He also added …
One thought on “Cisco: CVE-2020-11651 SaltStack FrameWork”

Have some thoughts? why not share with us here.

Hey we spotted an adblocker on your browser

Hello, Welcome to Stormbreaker.
We are happy that you opened our website but please disable the adblocker to view further.
Ads are a way this page is generating revenue and making this awesome site and people behind it working. 
Thank you in advanced.
Team Stormbreaker.