Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2012-3865

Опубликовано: 06 авг. 2012
Источник: debian
EPSS Низкий

Описание

Directory traversal vulnerability in lib/puppet/reports/store.rb in Puppet before 2.6.17 and 2.7.x before 2.7.18, and Puppet Enterprise before 2.5.2, when Delete is enabled in auth.conf, allows remote authenticated users to delete arbitrary files on the puppet master server via a .. (dot dot) in a node name.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
puppetfixed2.7.18-1package

EPSS

Процентиль: 84%
0.0215
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2012-3865

ubuntu
больше 13 лет назад

Directory traversal vulnerability in lib/puppet/reports/store.rb in Puppet before 2.6.17 and 2.7.x before 2.7.18, and Puppet Enterprise before 2.5.2, when Delete is enabled in auth.conf, allows remote authenticated users to delete arbitrary files on the puppet master server via a .. (dot dot) in a node name.

redhat логотип

CVE-2012-3865

redhat
больше 13 лет назад

Directory traversal vulnerability in lib/puppet/reports/store.rb in Puppet before 2.6.17 and 2.7.x before 2.7.18, and Puppet Enterprise before 2.5.2, when Delete is enabled in auth.conf, allows remote authenticated users to delete arbitrary files on the puppet master server via a .. (dot dot) in a node name.

nvd логотип

CVE-2012-3865

nvd
больше 13 лет назад

Directory traversal vulnerability in lib/puppet/reports/store.rb in Puppet before 2.6.17 and 2.7.x before 2.7.18, and Puppet Enterprise before 2.5.2, when Delete is enabled in auth.conf, allows remote authenticated users to delete arbitrary files on the puppet master server via a .. (dot dot) in a node name.

github логотип

GHSA-g89m-3wjw-h857

github
больше 8 лет назад

Puppet vulnerable to Path Traversal

EPSS

Процентиль: 84%
0.0215
Низкий