- Vulnerability/
- saltproject-2020-05-06-advisory
saltproject-2020-05-06-advisory: Active Salt CVE Update - CVE-2020-11651 and CVE-2020-11652
First published: Wed May 06 2020(Updated: )
Thank you all for your continued support, collaboration and camaraderie as we work together to address these critical CVEs (CVE-2020-11651 and CVE-2020-11652,) and ensure your Salt environments are secure. Our combined efforts to get all Salt users patched quickly are making a difference. This communication provides clarity on a number of key updates. Please take note and act quickly. We have created and made patches available for a number of Salt releases. Some patches are specific to certain Salt versions and, as noted, some will patch multiple versions. To ensure the patch is effective, verify installation of your version prior to installing any patches.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SaltStack Salt |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
- collector/saltproject-latest
- source/Salt Project
- agent/severity
- agent/title
- agent/last-modified-date
- agent/first-publish-date
- agent/type
- collector/saltproject-advisory
- agent/software-canonical-lookup
- agent/references
- agent/softwarecombine
- agent/description
- agent/event
- agent/tags
- vendor/saltstack
- canonical/saltstack salt