Lucene search
+L

7 matches found

NVD
NVD
added 2025/02/07 8:15 p.m.23 views

CVE-2021-27017

Utilization of a module presented a security risk by allowing the deserialization of untrusted/user supplied data. This is resolved in the Puppet Agent 7.4.0 release...

6.6CVSS0.00541EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/02/07 8:15 p.m.13 views

CVE-2021-27017

Utilization of a module presented a security risk by allowing the deserialization of untrusted/user supplied data. This is resolved in the Puppet Agent 7.4.0 release...

6.6CVSS5.9AI score0.00541EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/02/07 7:28 p.m.22 views

CVE-2021-27017 Deserialization of untrusted data

Utilization of a module presented a security risk by allowing the deserialization of untrusted/user supplied data. This is resolved in the Puppet Agent 7.4.0 release...

6.6CVSS0.00541EPSS
Exploits0References1
CVE
CVE
added 2025/02/07 7:28 p.m.80 views

CVE-2021-27017

CVE-2021-27017 describes a deserialization vulnerability in Puppet Agent prior to 7.4.0 caused by using a module that accepts untrusted user data. The CVSS-based impact indicates high confidentiality, integrity, and availability with network access, high attack complexity, and high privileges req...

6.6CVSS6.9AI score0.00541EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/07 7:28 p.m.17 views

CVE-2021-27017 Deserialization of untrusted data

Utilization of a module presented a security risk by allowing the deserialization of untrusted/user supplied data. This is resolved in the Puppet Agent 7.4.0 release...

6.6CVSS6.9AI score0.00541EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2025/02/07 7:28 p.m.49 views

CVE-2021-27017

Utilization of a module presented a security risk by allowing the deserialization of untrusted/user supplied data. This is resolved in the Puppet Agent 7.4.0 release...

6.6CVSS5.4AI score0.00541EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/04/09 12:0 a.m.43 views

Puppet Agent 7.x < 7.4.0 Deserialization

The version of Puppet Agent installed on the remote Windows host is 7.x prior to 7.4.0. It is, therefore, affected by an deserialization vulnerability. An authenticated, remote attacker can exploit this to execute arbitrary code on the target host. Note that Nessus has not tested for this issue b...

6.6CVSS6.4AI score0.00541EPSS
Exploits0References2
Rows per page
Query Builder