Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2015-7224

Опубликовано: 21 дек. 2017
Источник: debian
EPSS Низкий

Описание

puppetlabs-mysql 3.1.0 through 3.6.0 allow remote attackers to bypass authentication by leveraging creation of a database account without a password when a 'mysql_user' user parameter contains a host with a netmask.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
puppet-module-puppetlabs-mysqlfixed3.6.1-1package
puppet-module-puppetlabs-mysqlnot-affectedjessiepackage

EPSS

Процентиль: 67%
0.00546
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2015-7224

CVSS3: 9.8
ubuntu
около 8 лет назад

puppetlabs-mysql 3.1.0 through 3.6.0 allow remote attackers to bypass authentication by leveraging creation of a database account without a password when a 'mysql_user' user parameter contains a host with a netmask.

nvd логотип

CVE-2015-7224

CVSS3: 9.8
nvd
около 8 лет назад

puppetlabs-mysql 3.1.0 through 3.6.0 allow remote attackers to bypass authentication by leveraging creation of a database account without a password when a 'mysql_user' user parameter contains a host with a netmask.

github логотип

GHSA-cg6c-24mc-jmx8

CVSS3: 9.8
github
больше 3 лет назад

puppetlabs-mysql 3.1.0 through 3.6.0 allow remote attackers to bypass authentication by leveraging creation of a database account without a password when a 'mysql_user' user parameter contains a host with a netmask.

EPSS

Процентиль: 67%
0.00546
Низкий