3 matches found
CVE-2015-7224
puppetlabs-mysql 3.1.0 through 3.6.0 allow remote attackers to bypass authentication by leveraging creation of a database account without a password when a 'mysqluser' user parameter contains a host with a netmask...
CVE-2015-7224
puppetlabs-mysql 3.1.0 through 3.6.0 allow remote attackers to bypass authentication by leveraging creation of a database account without a password when a 'mysqluser' user parameter contains a host with a netmask...
CVE-2015-7224
puppetlabs-mysql versions 3.1.0–3.6.0 have an authentication bypass when a mysql_user parameter includes a host with a netmask, enabling remote account creation without a password. Exploitation details or status of fixes are not provided in the available documents; remediation information is not ...