Lucene search
CVE-2013-4969
🗓️ 07 Jan 2014 18:06:55Reported by Debian Security Bug TrackerType 
debiancve🔗 security-tracker.debian.org👁 23 Views
Puppet versions before 3.3.3 and 3.4 before 3.4.1, and Puppet Enterprise (PE) before 2.8.4 and 3.1 before 3.1.1, allows local users to overwrite arbitrary files via a symlink attack
Show more
| Reporter | Title | Published | Views | Family All 38 |
|---|---|---|---|---|
 | Debian DSA-2831-1 : puppet - insecure temporary files | 2 Jan 201400:00 | – | nessus |
| Ubuntu 12.04 LTS / 12.10 / 13.04 / 13.10 : puppet vulnerability (USN-2077-1) | 7 Jan 201400:00 | – | nessus |
| Amazon Linux AMI : puppet (ALAS-2014-288) | 5 Feb 201400:00 | – | nessus |
| Fedora 20 : puppet-3.4.2-1.fc20 (2014-0825) | 24 Jan 201400:00 | – | nessus |
| Fedora 19 : puppet-3.4.2-1.fc19 (2014-0850) | 24 Jan 201400:00 | – | nessus |
| Puppet Symlink File Overwrite | 27 Jan 201400:00 | – | nessus |
| Mandriva Linux Security Advisory : puppet (MDVSA-2014:040) | 19 Feb 201400:00 | – | nessus |
| SuSE 11.3 Security Update : puppet (SAT Patch Number 9472) | 9 Jul 201400:00 | – | nessus |
| Puppet Enterprise 3.x < 3.1.1 Multiple Vulnerabilities | 21 Mar 201400:00 | – | nessus |
 | Puppet vulnerability | 6 Jan 201400:00 | – | ubuntu |
10
| OS | OS Version | Architecture | Package | Package Version | Filename |
|---|---|---|---|---|---|
| Debian | 11 | all | puppet | 3.4.1-1 | puppet_3.4.1-1_all.deb |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo07 Jan 2014 18:55Current
6.2Medium risk
Vulners AI Score6.2
CVSS22.1
EPSS0.00045