Lucene search
HistoryAug 20, 2013 - 10:55 p.m.
CVE-2013-4961
puppet
enterprise
cve-2013-4961
http response headers
information leakage
security vulnerability
6.4 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.002 Low
EPSS
Percentile
56.6%
Puppet Enterprise before 3.0.1 includes version information for the Apache and Phusion Passenger products in its HTTP response headers, which allows remote attackers to obtain sensitive information.
Related
ubuntucve
ubuntucve
CVE-2013-4961
2013-08-20 00:00:00
prion
prion
Information disclosure
2013-08-20 22:55:00
debiancve
debiancve
CVE-2013-4961
2013-08-20 22:55:00
nessus
nessus
Puppet Enterprise < 3.0.1 Multiple Vulnerabilities
2013-10-28 00:00:00
6.4 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.002 Low
EPSS
Percentile
56.6%
Related for CVE-2013-4961