Aqua CSPM

Open Salt

Quick Info

Plugin TitleOpen Salt
CloudAZURE
CategoryNetwork Security Groups
DescriptionDetermine if TCP ports 4505 or 4506 for the Salt master are open to the public
More InfoActive Salt vulnerabilities, CVE-2020-11651 and CVE-2020-11652 are exploiting Salt instances exposed to the internet. These ports should be closed immediately.
AZURE Linkhttps://help.saltstack.com/hc/en-us/articles/360043056331-New-SaltStack-Release-Critical-Vulnerability
Recommended ActionRestrict TCP ports 4505 and 4506 to known IP addresses

Detailed Remediation Steps