Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2019/10/09 12:0 a.m.32 views

Puppet Enterprise < 2016.4.0 Multiple Vulnerabilities

According to its self-reported version number, the Puppet Enterprise application running on the remote host is version prior to 2016.2.1. It is, therefore, affected by the following vulnerabilities : - An information disclosure vulnerability exists in the environment catalog component. An...

7.2CVSS6.8AI score0.02241EPSS
Exploits2References4
UbuntuCve
UbuntuCve
added 2017/10/18 6:29 p.m.22 views

CVE-2016-5714

Puppet Enterprise 2015.3.3 and 2016.x before 2016.4.0, and Puppet Agent 1.3.6 through 1.7.0 allow remote attackers to bypass a host whitelist protection mechanism and execute arbitrary code on Puppet nodes via vectors related to command validation, aka "Puppet Execution Protocol PXP Command...

7.2CVSS7.2AI score0.02241EPSS
Exploits0References4
NVD
NVD
added 2017/10/18 6:29 p.m.22 views

CVE-2016-5714

Puppet Enterprise 2015.3.3 and 2016.x before 2016.4.0, and Puppet Agent 1.3.6 through 1.7.0 allow remote attackers to bypass a host whitelist protection mechanism and execute arbitrary code on Puppet nodes via vectors related to command validation, aka "Puppet Execution Protocol PXP Command...

7.2CVSS7.5AI score0.02241EPSS
Exploits0References4
CVE
CVE
added 2017/10/18 6:0 p.m.65 views

CVE-2016-5714

CVE-2016-5714 affects Puppet Enterprise 2015.3.3 and 2016.x before 2016.4.0, and Puppet Agent 1.3.6 through 1.7.0. The vulnerability allows remote attackers to bypass the host whitelist protection and execute arbitrary code on Puppet nodes, via issues in the Puppet Execution Protocol (PXP) Comman...

7.2CVSS7.5AI score0.02241EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2017/10/18 6:0 p.m.18 views

CVE-2016-5714

Puppet Enterprise 2015.3.3 and 2016.x before 2016.4.0, and Puppet Agent 1.3.6 through 1.7.0 allow remote attackers to bypass a host whitelist protection mechanism and execute arbitrary code on Puppet nodes via vectors related to command validation, aka "Puppet Execution Protocol PXP Command...

7.2CVSS7.5AI score0.02241EPSS
Exploits0
OpenVAS
OpenVAS
added 2016/11/01 12:0 a.m.29 views

Puppet Enterprise < 2016.4.0 Multiple Vulnerabilities

Puppet Enterprise is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:puppet:enterprise"; if...

8.8CVSS6.6AI score0.02241EPSS
Exploits2References5
Rows per page
Query Builder