Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-cg6c-24mc-jmx8

Опубликовано: 14 мая 2022
Источник: github
Github: Не прошло ревью
CVSS3: 9.8

Описание

puppetlabs-mysql 3.1.0 through 3.6.0 allow remote attackers to bypass authentication by leveraging creation of a database account without a password when a 'mysql_user' user parameter contains a host with a netmask.

puppetlabs-mysql 3.1.0 through 3.6.0 allow remote attackers to bypass authentication by leveraging creation of a database account without a password when a 'mysql_user' user parameter contains a host with a netmask.

Ссылки

EPSS

Процентиль: 67%
0.00546
Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2015-7224

Дефекты

CWE-287

Связанные уязвимости

ubuntu логотип

CVE-2015-7224

CVSS3: 9.8
ubuntu
около 8 лет назад

puppetlabs-mysql 3.1.0 through 3.6.0 allow remote attackers to bypass authentication by leveraging creation of a database account without a password when a 'mysql_user' user parameter contains a host with a netmask.

nvd логотип

CVE-2015-7224

CVSS3: 9.8
nvd
около 8 лет назад

puppetlabs-mysql 3.1.0 through 3.6.0 allow remote attackers to bypass authentication by leveraging creation of a database account without a password when a 'mysql_user' user parameter contains a host with a netmask.

debian логотип

CVE-2015-7224

CVSS3: 9.8
debian
около 8 лет назад

puppetlabs-mysql 3.1.0 through 3.6.0 allow remote attackers to bypass ...

EPSS

Процентиль: 67%
0.00546
Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2015-7224

Дефекты

CWE-287