GHSA-G5QR-XGG7-8Q2W Command Injection in puppet-facter

All versions of the package puppet-facter are vulnerable to Command Injection via the getFact function due to improper input sanitization...

CVE-2022-25350

All versions of the package puppet-facter are vulnerable to Command Injection via the getFact function due to improper input sanitization...

CVE-2022-25350

All versions of the package puppet-facter are vulnerable to Command Injection via the getFact function due to improper input sanitization...

node-puppet-facter 安全漏洞

node-puppet-facter is an open source Node.JS module for Facter by OlinData. A security vulnerability exists in puppet-facter that stems from the getFact function not properly cleaning up data data...

CVE-2022-25350

All versions of the package puppet-facter are vulnerable to Command Injection via the getFact function due to improper input sanitization...

PT-2023-12788 · Puppet · Puppet-Facter

Name of the Vulnerable Software and Affected Versions: puppet-facter versions all Description: The issue is related to Command Injection via the getFact function due to improper input sanitization. This allows for potential exploitation. No information is provided about the estimated number of...

Command Injection

Overview Affected versions of this package are vulnerable to Command Injection via the getFact function due to improper input sanitization. PoC js var root = require"puppet-facter" root.getFact"& touch JHU",function, Remediation There is no fixed version for puppet-facter. References - Vulnerable...