Hackers attacked six Cisco backend servers as they exploited two recently reported vulnerabilities in SaltStack Salt. Cisco Modeling Labs Corporate Edition (CML) and Cisco Virtual Internet Routing Lab Personal Edition (VIRL-PE) incorporate versions of SaltStack that are running the Salt master service were affected by these vulnerabilities.
Cisco and the Salt community recommend that users should immediately update software and harden their Salt environments.