SaltStack has released information on 3 vulnerabilities. 2 being critical, impacting Salt versions 3002 and prior. Users are encouraged to patch their Salt instances immediately.

With SaltStack up and running, it is then possible to send commands to your minions. This can be used within your on-premise or cloud-hosted data center.

SaltStack Enterprise provides devops engineers and IT operators with event-driven automation and orchestration for natively integrated configuration management, infrastructure security and ...

SaltStack revises partial patch for command injection, privilege escalation vulnerability The second fix was reportedly necessary after SaltStack did not participate in coordinated disclosure.

By acquiring SaltStack, VMware said it will extend its automation capabilities beyond infrastructure to the software and packages inside virtual machines and containers.

Cisco said today that some of its Cisco Virtual Internet Routing Lab Personal Edition (VIRL-PE) backend servers were hacked by exploiting critical SaltStack vulnerabilities patched last month.

Attackers are exploiting two critical vulnerabilities disclosed late last week in the popular SaltStack infrastructure automation software to take control of servers. Several organizations and ...