Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2019/10/09 12:0 a.m.58 views

Puppet Enterprise 2015.x / 2016.x < 2016.4.0 Multiple Vulnerabilities

According to its self-reported version number, the Puppet Enterprise application running on the remote host is version 2015.x or 2016.x prior to 2016.4.0. It is, therefore, affected by the following vulnerabilities : - A cross-site redirection vulnerability exists within the /auth/login script du...

6.1CVSS7.1AI score0.01447EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2019/10/09 12:0 a.m.32 views

Puppet Enterprise < 2016.4.0 Multiple Vulnerabilities

According to its self-reported version number, the Puppet Enterprise application running on the remote host is version prior to 2016.2.1. It is, therefore, affected by the following vulnerabilities : - An information disclosure vulnerability exists in the environment catalog component. An...

7.2CVSS6.8AI score0.02241EPSS
Exploits2References4
CVE
CVE
added 2017/01/12 11:0 p.m.65 views

CVE-2016-5715

CVE-2016-5715 affects Puppet Enterprise Console: open redirect in the login redirect parameter on Puppet Enterprise 2015.x and 2016.x before 2016.4.0. Root cause described as an incomplete fix for CVE-2015-6501. Impact: attackers can lure users to arbitrary sites via a crafted //domain URL. The v...

6.1CVSS6.3AI score0.01447EPSS
Exploits2References5Affected Software1
OpenVAS
OpenVAS
added 2016/11/01 12:0 a.m.29 views

Puppet Enterprise < 2016.4.0 Multiple Vulnerabilities

Puppet Enterprise is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:puppet:enterprise"; if...

8.8CVSS6.6AI score0.02241EPSS
Exploits2References5
Packet Storm
Packet Storm
added 2016/10/22 12:0 a.m.36 views

Puppet Enterprise Web Interface Open Redirect

Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/PUPPET-AUTHENTICATION-REDIRECT.txt + ISR: ApparitionSec Vendor: ============== www.puppet.com Product: ================================ Puppet Enterprise Web Interface Version...

0.01447EPSS
Exploits2
Rows per page
Query Builder