Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2015-1029

Опубликовано: 16 янв. 2015
Источник: nvd
CVSS2: 6.5
EPSS Низкий

Описание

The puppetlabs-stdlib module 2.1 through 3.0 and 4.1.0 through 4.5.x before 4.5.1 for Puppet 2.8.8 and earlier allows remote authenticated users to gain privileges or obtain sensitive information by prepopulating the fact cache.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:a:puppet:stdlib:2.1.0:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:2.1.1:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:2.1.2:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:2.1.3:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:2.2.0:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:2.2.1:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:2.3.0:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:2.3.1:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:2.3.2:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:2.3.3:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:2.4.0:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:2.5.0:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:3.0.0:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:4.1.0:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:4.2.0:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:4.2.1:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:4.2.2:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:4.3.0:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:4.3.1:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:4.3.2:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:4.4.0:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:stdlib:4.5.0:*:*:*:*:puppet:*:*
cpe:2.3:a:puppet:puppet_enterprise:*:*:*:*:*:*:*:*
Версия до 2.8.8 (включая)

EPSS

Процентиль: 58%
0.00363
Низкий

6.5 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

ubuntu логотип

CVE-2015-1029

ubuntu
почти 11 лет назад

The puppetlabs-stdlib module 2.1 through 3.0 and 4.1.0 through 4.5.x before 4.5.1 for Puppet 2.8.8 and earlier allows remote authenticated users to gain privileges or obtain sensitive information by prepopulating the fact cache.

msrc логотип

CVE-2015-1029

msrc
10 месяцев назад

Описание отсутствует

debian логотип

CVE-2015-1029

debian
почти 11 лет назад

The puppetlabs-stdlib module 2.1 through 3.0 and 4.1.0 through 4.5.x b ...

github логотип

GHSA-g3q8-3w6w-q3m9

github
больше 3 лет назад

The puppetlabs-stdlib module 2.1 through 3.0 and 4.1.0 through 4.5.x before 4.5.1 for Puppet 2.8.8 and earlier allows remote authenticated users to gain privileges or obtain sensitive information by prepopulating the fact cache.

EPSS

Процентиль: 58%
0.00363
Низкий

6.5 Medium

CVSS2

Дефекты

CWE-264