CVE-2015-7331

Опубликовано: 30 янв. 2017

Источник: nvd

CVSS3: 6.6

CVSS2: 4.9

EPSS Низкий

Описание

The mcollective-puppet-agent plugin before 1.11.1 for Puppet allows remote attackers to execute arbitrary code via vectors involving the --server argument.

Ссылки

http://www.securityfocus.com/bid/92432
Third Party Advisory
VDB Entry
https://puppet.com/security/cve/cve-2015-7331
Vendor Advisory
http://www.securityfocus.com/bid/92432
Third Party Advisory
VDB Entry
https://puppet.com/security/cve/cve-2015-7331
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:puppetlabs:mcollective-puppet-agent:*:*:*:*:*:puppet:*:*

Версия до 1.11.0 (включая)

EPSS

Процентиль: 60%

0.00393

Низкий

6.6 Medium

CVSS3

4.9 Medium

CVSS2

Дефекты

CWE-254

Связанные уязвимости

CVE-2015-7331

CVSS3: 6.6

ubuntu

около 9 лет назад

The mcollective-puppet-agent plugin before 1.11.1 for Puppet allows remote attackers to execute arbitrary code via vectors involving the --server argument.

CVE-2015-7331

CVSS3: 6.6

debian

около 9 лет назад

The mcollective-puppet-agent plugin before 1.11.1 for Puppet allows re ...

GHSA-cmhw-7wwx-6vgm

CVSS3: 6.6

github

больше 3 лет назад

The mcollective-puppet-agent plugin before 1.11.1 for Puppet allows remote attackers to execute arbitrary code via vectors involving the --server argument.

EPSS

Процентиль: 60%

0.00393

Низкий

6.6 Medium

CVSS3

4.9 Medium

CVSS2

Дефекты

CWE-254