Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-5xw6-x436-6c39

Опубликовано: 14 мая 2022
Источник: github
Github: Не прошло ревью
CVSS3: 7.8

Описание

Puppet Agent 1.10.x prior to 1.10.13, Puppet Agent 5.3.x prior to 5.3.7, and Puppet Agent 5.5.x prior to 5.5.2 on Windows only, with a specially crafted configuration file an attacker could get pxp-agent to load arbitrary code with privilege escalation.

Puppet Agent 1.10.x prior to 1.10.13, Puppet Agent 5.3.x prior to 5.3.7, and Puppet Agent 5.5.x prior to 5.5.2 on Windows only, with a specially crafted configuration file an attacker could get pxp-agent to load arbitrary code with privilege escalation.

Ссылки

EPSS

Процентиль: 44%
0.00217
Низкий

7.8 High

CVSS3

CVE ID

CVE-2018-6515

Дефекты

CWE-20

Связанные уязвимости

redhat логотип

CVE-2018-6515

CVSS3: 8.8
redhat
больше 7 лет назад

Puppet Agent 1.10.x prior to 1.10.13, Puppet Agent 5.3.x prior to 5.3.7, and Puppet Agent 5.5.x prior to 5.5.2 on Windows only, with a specially crafted configuration file an attacker could get pxp-agent to load arbitrary code with privilege escalation.

nvd логотип

CVE-2018-6515

CVSS3: 7.8
nvd
больше 7 лет назад

Puppet Agent 1.10.x prior to 1.10.13, Puppet Agent 5.3.x prior to 5.3.7, and Puppet Agent 5.5.x prior to 5.5.2 on Windows only, with a specially crafted configuration file an attacker could get pxp-agent to load arbitrary code with privilege escalation.

debian логотип

CVE-2018-6515

CVSS3: 7.8
debian
больше 7 лет назад

Puppet Agent 1.10.x prior to 1.10.13, Puppet Agent 5.3.x prior to 5.3. ...

EPSS

Процентиль: 44%
0.00217
Низкий

7.8 High

CVSS3

CVE ID

CVE-2018-6515

Дефекты

CWE-20