Lucene search

K
cvelistMitreCVELIST:CVE-2016-2785
HistoryJun 10, 2016 - 3:00 p.m.

CVE-2016-2785

2016-06-1015:00:00
mitre
www.cve.org
3

AI Score

9.5

Confidence

High

EPSS

0.006

Percentile

79.0%

Puppet Server before 2.3.2 and Ruby puppetmaster in Puppet 4.x before 4.4.2 and in Puppet Agent before 1.4.2 might allow remote attackers to bypass intended auth.conf access restrictions by leveraging incorrect URL decoding.

AI Score

9.5

Confidence

High

EPSS

0.006

Percentile

79.0%