Cisco released a security update on May 28th 2020 to address vulnerabilities in SaltStack. It is recommended that you take the necessary precautions by ensuring your products are always updated.
Cisco Modeling Labs Corporate Edition (CML)
Cisco Virtual Internet Routing Lab Personal Edition (VIRL-PE)
For more information on the SaltStack vulnerabilities you can follow the below url:
The Guyana National CIRT recommends that users and administrators review these guidelines and apply them where necessary.
Cisco Security Advisories (CVE-2020-11651, CVE-2020-11652) May 28th 2020
Cisco Releases Security Updates for CML and VIRL-PE , May 29th 2020. Retrieved from US-Cert
Cisco Releases Security Updates (June 01st 2020). Retrieved from CCIRC (Public Safety Canada)