Lucene search
PuppetCVELIST:CVE-2018-6516HistoryJun 14, 2018 - 9:00 p.m.
CVE-2018-6516
2018-06-1421:00:00
puppet
www.cve.org
3
EPSS
0.001
Percentile
27.2%
On Windows only, with a specifically crafted configuration file an attacker could get Puppet PE client tools (aka pe-client-tools) 16.4.x prior to 16.4.6, 17.3.x prior to 17.3.6, and 18.1.x prior to 18.1.2 to load arbitrary code with privilege escalation.
CNA Affected
[
{
"product": "pe-client-tools",
"vendor": "Puppet",
"versions": [
{
"status": "affected",
"version": "16.4.x prior to 16.4.6"
},
{
"status": "affected",
"version": "17.3.x prior to 17.3.6"
},
{
"status": "affected",
"version": "18.1.x prior to 18.1.2"
}
]
}
]References
Related
debiancve
debiancve
CVE-2018-6516
2018-06-14 21:29:00
ubuntucve
ubuntucve
CVE-2018-6516
2018-06-14 00:00:00
cve
cve
CVE-2018-6516
2018-06-14 21:29:00
prion
prion
Privilege escalation
2018-06-14 21:29:00
nvd
nvd
CVE-2018-6516
2018-06-14 21:29:00