Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.11 views

EUVD-2013-4803

Malware in sbrugna...

2.1CVSS6.3AI score0.00352EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-3859

Malware in sbrugna...

9.8CVSS7.3AI score0.01563EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-4125

Malware in sbrugna...

6.8CVSS6.6AI score0.00703EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/06/28 7:24 a.m.9 views

CVE-2025-5459

A user with specific node group editing permissions and a specially crafted class parameter could be used to execute commands as root on the primary host. It affects Puppet Enterprise versions 2018.1.8 through 2023.8.3 and 2025.3 and has been resolved in versions 2023.8.4 and 2025.4.0...

8.6CVSS7.6AI score0.00425EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/26 6:30 a.m.9 views

CVE-2025-5459 OS Command Injection

A user with specific node group editing permissions and a specially crafted class parameter could be used to execute commands as root on the primary host. It affects Puppet Enterprise versions 2018.1.8 through 2023.8.3 and 2025.3 and has been resolved in versions 2023.8.4 and 2025.4.0...

8.6CVSS0.00425EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/26 6:30 a.m.3 views

CVE-2025-5459 OS Command Injection

A user with specific node group editing permissions and a specially crafted class parameter could be used to execute commands as root on the primary host. It affects Puppet Enterprise versions 2018.1.8 through 2023.8.3 and 2025.3 and has been resolved in versions 2023.8.4 and 2025.4.0...

8.6CVSS7.5AI score0.00425EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/06/26 12:0 a.m.6 views

PT-2025-26943 · Puppet · Puppet Enterprise

Name of the Vulnerable Software and Affected Versions: Puppet Enterprise versions 2018.1.8 through 2023.8.3 Puppet Enterprise version 2025.3 Description: A user with specific node group editing permissions and a specially crafted class parameter could execute commands as root on the primary host...

8.6CVSS7.6AI score0.00425EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/22 7:29 p.m.17 views

CVE-2021-27024

A flaw was discovered in Continuous Delivery for Puppet Enterprise CD4PE that results in a user with lower privileges being able to access a Puppet Enterprise API token. This issue is resolved in CD4PE 4.10.0...

8.1CVSS6.7AI score0.00792EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/11/10 12:0 a.m.4 views

Puppet 安全漏洞

Puppet is a set of configuration management tools based on the client/server C/S architecture from Puppet Labs in the United States, which can be used to manage configuration files, users, cron tasks, packages, system services, etc. Puppet Agent is a Puppet agent end-program. A security...

6.5CVSS6.4AI score0.01149EPSS
Exploits0References11
CNNVD
CNNVD
added 2021/08/19 12:0 a.m.6 views

Puppet 日志信息泄露漏洞

Puppet is a set of configuration management tools based on client/server C/S architecture from Puppet Labs in the United States, which can be used to manage profiles, users, cron tasks, packages, system services, etc. There is a security vulnerability in Puppet Enterprise. No information about th...

4.3CVSS5.2AI score0.00736EPSS
Exploits0References2
Rows per page
Query Builder