Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.24 views

openSUSE Security Update : puppet (openSUSE-SU-2013:1370-1)

A potential remote code execution via YAML was fixed in puppet. CVE-2013-3567 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2013-661. The text description of this plugin is C SUSE...

7.5CVSS7.1AI score0.03408EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2013/12/10 12:0 a.m.29 views

openSUSE: Security Advisory for puppet (openSUSE-SU-2013:1370-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.4AI score0.03408EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2013/09/24 6:2 p.m.29 views

Critical: Red Hat Security Advisory: ruby193-puppet security update

Updated ruby193-puppet packages that fix three security issues are now available for Red Hat OpenStack 3.0. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

7.5CVSS6.9AI score0.03408EPSS
Exploits0References8
OPENSUSE Linux
OPENSUSE Linux
added 2013/08/22 3:4 p.m.27 views

puppet: security fix for YAML support (critical)

A potential remote code execution via YAML was fixed in puppet. CVE-2013-3567...

7.5CVSS3AI score0.03408EPSS
Exploits0References1
OSV
OSV
added 2013/08/19 11:55 p.m.7 views

CVE-2013-3567

Puppet 2.7.x before 2.7.22 and 3.2.x before 3.2.2, and Puppet Enterprise before 2.8.2, deserializes untrusted YAML, which allows remote attackers to instantiate arbitrary Ruby classes and execute arbitrary code via a crafted REST API call...

7.5CVSS6.8AI score0.03408EPSS
Exploits0References8
OSV
OSV
added 2013/08/19 11:55 p.m.2 views

DEBIAN-CVE-2013-3567

Puppet 2.7.x before 2.7.22 and 3.2.x before 3.2.2, and Puppet Enterprise before 2.8.2, deserializes untrusted YAML, which allows remote attackers to instantiate arbitrary Ruby classes and execute arbitrary code via a crafted REST API call...

7.5CVSS7.9AI score0.03408EPSS
Exploits0References1
Cvelist
Cvelist
added 2013/08/19 11:0 p.m.28 views

CVE-2013-3567

Puppet 2.7.x before 2.7.22 and 3.2.x before 3.2.2, and Puppet Enterprise before 2.8.2, deserializes untrusted YAML, which allows remote attackers to instantiate arbitrary Ruby classes and execute arbitrary code via a crafted REST API call...

7.1AI score0.03408EPSS
Exploits0References8
CVE
CVE
added 2013/08/19 11:0 p.m.136 views

CVE-2013-3567

Summary: CVE-2013-3567 affects Puppet 2.7.x < 2.7.22, 3.2.x < 3.2.2, and Puppet Enterprise = 2.7.22 for 2.7.x, >= 3.2.2 for 3.2.x, or >= 2.8.2 for Puppet Enterprise.

7.5CVSS7.3AI score0.03408EPSS
Exploits0References8Affected Software2
Amazon
Amazon
added 2013/07/12 12:0 a.m.46 views

Critical: puppet

Issue Overview: Puppet 2.7.x before 2.7.22 and 3.2.x before 3.2.2, and Puppet Enterprise before 2.8.2, deserializes untrusted YAML, which allows remote attackers to instantiate arbitrary Ruby classes and execute arbitrary code via a crafted REST API call. Affected Packages: puppet Issue Correctio...

7.5CVSS7.2AI score0.03408EPSS
Exploits0
Debian
Debian
added 2013/06/26 8:24 p.m.28 views

[SECURITY] [DSA 2715-1] puppet security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2715-1 [email protected] http://www.debian.org/security/ Raphael Geissert June 26, 2013 http://www.debian.org/security/faq -...

7.5CVSS6.7AI score0.03408EPSS
Exploits0
Rows per page
Query Builder