18 matches found
CVE-2017-7529
The CVE-2017-7529 entry concerns nginx’s range filter module. Affected software: nginx (and nginx-mainline in Arch advisories). Vulnerable component: the HTTP range/filter logic within nginx range filter/module. Root cause: integer overflow when processing crafted byte ranges, leading to informat...
CVE-2021-27023
CVE-2021-27023 affects Puppet Agent and Puppet Server and is an information disclosure vulnerability where HTTP credentials can leak when following redirects to a different host. The description notes a flaw in how HTTP redirects are handled, similar to CVE-2018-1000007. The NVD metrics indicate ...
CVE-2021-27025
CVE-2021-27025 affects Puppet Agent, where the agent may silently ignore Augeas settings or be vulnerable to a Denial of Service condition prior to the first pluginsync. The connected materials tie this issue to Puppet Agent across multiple contexts (including Puppet Enterprise and various Linux ...
CVE-2017-10689
CVE-2017-10689 affects Puppet-related tarball handling. According to connected advisories, Puppet could install modules with insecure permissions when unpacking tarballs, potentially enabling local code execution. Root cause: tar/mini.rb unpacking may preserve or impose unsafe permissions from th...
CVE-2013-1640
CVE-2013-1640 affects Puppet master handling of template and inline_template functions. The flaw allows remote authenticated users to execute arbitrary code via a crafted catalog request. Affected versions include Puppet before 2.6.18, 2.7.x before 2.7.21, and 3.1.x before 3.1.1, as well as Puppe...
CVE-2017-10690
Puppet Agent vulnerability CVE-2017-10690 allowed retrieving facts from an environment the agent was not classified to access. Root cause: environment leakage within the agent’s fact retrieval. Fixes were implemented in Puppet Agent 5.3.4, included in Puppet Enterprise 2017.3.4; other references ...
CVE-2012-3408
CVE-2012-3408 affects Puppet: the file lib/puppet/network/authstore.rb in Puppet before 2.7.18 and Puppet Enterprise before 2.5.2 allows use of IP addresses in certnames without warning, which might let remote attackers spoof an agent by reusing a previously seen IP address. The available connect...
CVE-2021-27021
CVE-2021-27021 affects Puppet DB. A flaw enables privilege escalation that allows a user to delete tables via an SQL query. This is corroborated across NVD, OSV, Nessus/NASL plugins, and OSV Debian/Ubuntu entries. The connected documents do not specify affected versions, root cause details, explo...
CVE-2018-6510
CVE-2018-6510 describes a cross-site scripting vulnerability in Puppet Enterprise Console (used with the Orchestrator). The issue allows an attacker to inject scripts into the Puppet Enterprise Console and is tied to Puppet Enterprise: 2017.3.x versions prior to 2017.3.6. The root cause is improp...
CVE-2017-2297
Puppet Enterprise is affected by CVE-2017-2297. Affected products: Puppet Enterprise versions prior to 2016.4.5 and 2017.2.1. Root cause: the system did not properly authenticate a user before returning a labeled RBAC access token. Impact: this can allow an unauthenticated bypass of authenticatio...
CVE-2021-27019
Technical details about CVE-2021-27019 are not publicly available in the provided connected documents; descriptions reiterate information disclosure through PuppetDB logging. Monitor for updates.
CVE-2018-6511
CVE-2018-6511 is a cross-site scripting (XSS) vulnerability in the Puppet Enterprise Console of Puppet Enterprise. It affects Puppet Enterprise 2017.3.x releases prior to 2017.3.6, due to improper validation of user-supplied input. An unauthenticated remote attacker could exploit this by injectin...
CVE-2017-2293
CVE-2017-2293 affects Puppet Enterprise prior to 2016.4.5 or 2017.2.1, where MCollective configuration allowed the package plugin to install or remove arbitrary packages on all managed agents. The issue arises from an insecure default configuration that permits package management actions via MCol...
CVE-2021-27022
CVE-2021-27022 affects bolt-server and ace; vulnerable on SSH/WinRM inventory service nodes where running a task with sensitive parameters causes those parameters to be logged. The issue is described consistently across Red Hat, NVD/NVD feed, Ubuntu, Debian, and OSV/etc. The provided documents do...
CVE-2021-27020
CVE-2021-27020 affects Puppet Enterprise prior to 2019.8.6, where unsanitized user input during CSV export leads to a security risk. Root cause: input not sanitized in CSV export path. Impact: data exposure/compromise as described; no explicit exploitation details provided in the documents. Mitig...
CVE-2023-5309
CVE-2023-5309 affects Puppet Enterprise; versions prior to 2021.7.6 and prior to 2023.5 have a flaw that causes broken session management for SAML implementations. The underlying issue is a session-management defect in Puppet Enterprise’s SAML handling, leading to interruptions of authenticated s...
CVE-2021-27026
CVE-2021-27026 affects Puppet Enterprise and related Puppet products. The issue is an information-disclosure flaw where sensitive plan parameters may be logged, caused by logging sensitive data during normal operation. Affected versions cited by Nessus: Puppet Enterprise < 2019.8.9 and 2021.x
CVE-2015-6502
The CVE-2015-6502 entries describe a cross-site scripting (XSS) vulnerability in Puppet Enterprise’s console, affecting versions before 2015.2.1. The vulnerability arises from the string parameter (related to Login Redirect) and allows remote injection of web script/HTML. The connected sources co...