22 matches found
EUVD-2022-34659
Malicious code in bioql PyPI...
EUVD-2023-2616
Malicious code in bioql PyPI...
CVE-2023-5214
In Puppet Bolt versions prior to 3.27.4, a path to escalate privileges was identified...
GHSA-289M-2964-F8Q5 Puppet Bolt privilege escalation vulnerability
In Puppet Bolt versions prior to 3.27.4, a path to escalate privileges was identified...
Puppet Bolt privilege escalation vulnerability
In Puppet Bolt versions prior to 3.27.4, a path to escalate privileges was identified...
CVE-2023-5214
In Puppet Bolt versions prior to 3.27.4, a path to escalate privileges was identified...
Path traversal
In Puppet Bolt versions prior to 3.27.4, a path to escalate privileges was identified...
CVE-2023-5214
In Puppet Bolt versions prior to 3.27.4, a path to escalate privileges was identified...
CVE-2023-5214 CVE-2023-5214 - Privilege Escalation in Puppet Bolt
In Puppet Bolt versions prior to 3.27.4, a path to escalate privileges was identified...
CVE-2023-5214
CVE-2023-5214 affects Puppet Bolt before version 3.27.4. The vulnerability is described as a path to escalate privileges. No exploit details are provided in the available documents. Remediation: upgrade Puppet Bolt to 3.27.4 or later (if indicated by sources).
CVE-2023-5214 CVE-2023-5214 - Privilege Escalation in Puppet Bolt
In Puppet Bolt versions prior to 3.27.4, a path to escalate privileges was identified...
PT-2023-31931 · Puppet · Puppet Bolt
Name of the Vulnerable Software and Affected Versions: Puppet Bolt versions prior to 3.27.4 Description: A path to escalate privileges was identified in Puppet Bolt. Recommendations: For versions prior to 3.27.4, update to version 3.27.4 or later to resolve the issue...
Puppet Bolt privilege escalation vulnerability
In Puppet Bolt versions prior to 3.27.4, a path to escalate privileges was identified...
Puppet Bolt Security Vulnerability
Puppet is a set of configuration management tools based on client/server C/S architecture from Puppet Labs in the United States, which can be used to manage configuration files, users, cron tasks, packages, system services, and so on. A security vulnerability exists in Puppet Bolt versions prior ...
CVE-2022-2394
Puppet Bolt prior to version 3.24.0 will print sensitive parameters when planning a run resulting in them potentially being logged when run programmatically, such as via Puppet Enterprise...
CVE-2022-2394
Puppet Bolt prior to version 3.24.0 will print sensitive parameters when planning a run resulting in them potentially being logged when run programmatically, such as via Puppet Enterprise...
Code injection
Puppet Bolt prior to version 3.24.0 will print sensitive parameters when planning a run resulting in them potentially being logged when run programmatically, such as via Puppet Enterprise...
CVE-2022-2394
CVE-2022-2394 affects Puppet Bolt prior to 3.24.0. The vulnerability results from Bolt printing sensitive parameters during planning/runs, which may be logged when executed programmatically (e.g., via Puppet Enterprise). Affected versions include Bolt before 3.24.0; the issue is an information di...
CVE-2022-2394 Sensitive Parameter Exposure in Puppet Bolt prior to 3.24
Puppet Bolt prior to version 3.24.0 will print sensitive parameters when planning a run resulting in them potentially being logged when run programmatically, such as via Puppet Enterprise...
PT-2022-16353 · Puppet · Puppet Bolt
Name of the Vulnerable Software and Affected Versions: Puppet Bolt versions prior to 3.24.0 Description: The issue allows sensitive parameters to be printed when planning a run, potentially resulting in them being logged when executed programmatically, such as through Puppet Enterprise...