CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

SUSE CVE•added 2023/02/15 5:50 a.m.•1 views

SUSE CVE-2011-3869

Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x allows local users to overwrite arbitrary files via a symlink attack on the .k5login file...

6.3CVSS6.7AI score0.00042EPSS

Exploits0References4

SUSE CVE•added 2023/02/15 5:48 a.m.•1 views

SUSE CVE-2012-1054

Puppet 2.6.x before 2.6.14 and 2.7.x before 2.7.11, and Puppet Enterprise PE Users 1.0, 1.1, 1.2.x, 2.0.x before 2.0.3, when managing a user login file with the k5login resource type, allows local users to gain privileges via a symlink attack on .k5login...

4.4CVSS7AI score0.00071EPSS

Exploits0References4

Github Security Blog•added 2022/05/14 12:56 a.m.•21 views

Puppet arbitrary file overwrite

Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x allows local users to overwrite arbitrary files via a symlink attack on the .k5login file...

6.3CVSS6.4AI score0.00042EPSS

Exploits0References13Affected Software1

Tenable Nessus•added 2013/09/04 12:0 a.m.•34 views

Amazon Linux AMI : puppet (ALAS-2012-53)

6.9CVSS5.2AI score0.00071EPSS

Exploits0References3

OSV•added 2012/05/29 8:55 p.m.•1 views

DEBIAN-CVE-2012-1054

4.4CVSS6.8AI score0.00071EPSS

Exploits0References1

NVD•added 2012/05/29 8:55 p.m.•19 views

CVE-2012-1054

4.4CVSS6.1AI score0.00071EPSS

Exploits0References14

OSV•added 2012/05/29 8:55 p.m.•5 views

CVE-2012-1054

4.4CVSS6.2AI score0.00071EPSS

Exploits0References14

securityvulns•added 2012/03/09 12:0 a.m.•47 views

[SECURITY] [DSA 2419-1] puppet security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2419-1 [email protected] http://www.debian.org/security/ Florian Weimer February 27, 2012 http://www.debian.org/security/faq -...

6.9CVSS2.6AI score0.00071EPSS

Exploits0

Tenable Nessus•added 2012/02/28 12:0 a.m.•27 views

Debian DSA-2419-1 : puppet - several vulnerabilities

Two vulnerabilities were discovered in Puppet, a centralized configuration management tool. - CVE-2012-1053 Puppet runs execs with an unintended group privileges, potentially leading to privilege escalation. - CVE-2012-1054 The k5login type writes to untrusted locations, enabling local users to...

6.9CVSS5.4AI score0.00071EPSS

Exploits0References6

OSV•added 2011/10/27 8:55 p.m.•1 views

DEBIAN-CVE-2011-3869

Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x allows local users to overwrite arbitrary files via a symlink attack on the .k5login file...

6.3CVSS6.2AI score0.00042EPSS

Exploits0References1

Debian CVE•added 2011/10/27 8:0 p.m.•25 views

CVE-2011-3869

Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x allows local users to overwrite arbitrary files via a symlink attack on the .k5login file...

6.3CVSS6.1AI score0.00042EPSS

Exploits0

OpenVAS•added 2011/10/04 12:0 a.m.•30 views

Ubuntu Update for puppet USN-1223-1

Ubuntu Update for Linux kernel vulnerabilities USN-1223-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN12231.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for puppet USN-1223-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This...

6.3CVSS0.2AI score0.00042EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by