Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2015-1029

Опубликовано: 16 янв. 2015
Источник: nvd
CVSS2: 6.5
EPSS Низкий

Описание

The puppetlabs-stdlib module 2.1 through 3.0 and 4.1.0 through 4.5.x before 4.5.1 for Puppet 2.8.8 and earlier allows remote authenticated users to gain privileges or obtain sensitive information by prepopulating the fact cache.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:a:puppet:stdlib:2.1.0:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:2.1.1:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:2.1.2:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:2.1.3:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:2.2.0:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:2.2.1:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:2.3.0:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:2.3.1:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:2.3.2:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:2.3.3:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:2.4.0:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:2.5.0:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:3.0.0:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:4.1.0:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:4.2.0:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:4.2.1:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:4.2.2:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:4.3.0:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:4.3.1:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:4.3.2:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:4.4.0:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:4.5.0:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:puppet_enterprise:*:*:*:*:*:*:*:*
Версия до 2.8.8 (включая)

EPSS

Процентиль: 54%
0.00312
Низкий

6.5 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

ubuntu логотип

CVE-2015-1029

ubuntu
больше 10 лет назад

The puppetlabs-stdlib module 2.1 through 3.0 and 4.1.0 through 4.5.x before 4.5.1 for Puppet 2.8.8 and earlier allows remote authenticated users to gain privileges or obtain sensitive information by prepopulating the fact cache.

msrc логотип

CVE-2015-1029

msrc
4 месяца назад

Описание отсутствует

debian логотип

CVE-2015-1029

debian
больше 10 лет назад

The puppetlabs-stdlib module 2.1 through 3.0 and 4.1.0 through 4.5.x b ...

github логотип

GHSA-g3q8-3w6w-q3m9

github
около 3 лет назад

The puppetlabs-stdlib module 2.1 through 3.0 and 4.1.0 through 4.5.x before 4.5.1 for Puppet 2.8.8 and earlier allows remote authenticated users to gain privileges or obtain sensitive information by prepopulating the fact cache.

EPSS

Процентиль: 54%
0.00312
Низкий

6.5 Medium

CVSS2

Дефекты

CWE-264