2 matches found
CVE-2013-4965
Puppet Enterprise before 3.1.0 does not properly restrict the number of authentication attempts by a console account, which makes it easier for remote attackers to bypass intended access restrictions via a brute-force attack...
CVE-2013-4965
CVE-2013-4965 affects Puppet Enterprise prior to 3.1.0. The flaw is that authentication attempts for a console account are not properly restricted, enabling brute-force attempts that can bypass access controls. The description states the issue plainly but does not provide product-specific vulnera...