exploitDog

GHSA-63rf-cwpf-vw2p

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

Описание

The dashboard report in Puppet Enterprise before 3.0.1 allows attackers to execute arbitrary YAML code via a crafted report-specific type.

The dashboard report in Puppet Enterprise before 3.0.1 allows attackers to execute arbitrary YAML code via a crafted report-specific type.

Ссылки

EPSS

Процентиль: 62%

0.00429

Низкий

CVE ID

Дефекты

CWE-94

Связанные уязвимости

CVE-2013-4957

ubuntu

больше 12 лет назад

The dashboard report in Puppet Enterprise before 3.0.1 allows attackers to execute arbitrary YAML code via a crafted report-specific type.

CVE-2013-4957

nvd

больше 12 лет назад

The dashboard report in Puppet Enterprise before 3.0.1 allows attackers to execute arbitrary YAML code via a crafted report-specific type.

EPSS

Процентиль: 62%

0.00429

Низкий

CVE ID

Дефекты

CWE-94