Описание
Puppet before 2.6.18, 2.7.x before 2.7.21, and 3.1.x before 3.1.1, and Puppet Enterprise before 1.2.7 and 2.7.x before 2.7.2 allows remote authenticated users with a valid certificate and private key to read arbitrary catalogs or poison the master's cache via unspecified vectors.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 2.7.18-1ubuntu2 |
| hardy | ignored | end of life |
| lucid | ignored | |
| oneiric | released | 2.7.1-1ubuntu3.8 |
| precise | released | 2.7.11-1ubuntu2.2 |
| quantal | released | 2.7.18-1ubuntu1.1 |
| upstream | released | 2.6.18, 2.7.21, 3.1.1 |
Показывать по
EPSS
4.9 Medium
CVSS2
Связанные уязвимости
Puppet before 2.6.18, 2.7.x before 2.7.21, and 3.1.x before 3.1.1, and Puppet Enterprise before 1.2.7 and 2.7.x before 2.7.2 allows remote authenticated users with a valid certificate and private key to read arbitrary catalogs or poison the master's cache via unspecified vectors.
Puppet before 2.6.18, 2.7.x before 2.7.21, and 3.1.x before 3.1.1, and Puppet Enterprise before 1.2.7 and 2.7.x before 2.7.2 allows remote authenticated users with a valid certificate and private key to read arbitrary catalogs or poison the master's cache via unspecified vectors.
Puppet before 2.6.18, 2.7.x before 2.7.21, and 3.1.x before 3.1.1, and ...
Puppet before 2.6.18, 2.7.x before 2.7.21, and 3.1.x before 3.1.1, and Puppet Enterprise before 1.2.7 and 2.7.x before 2.7.2 allows remote authenticated users with a valid certificate and private key to read arbitrary catalogs or poison the master's cache via unspecified vectors.
Уязвимости операционной системы Gentoo Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
EPSS
4.9 Medium
CVSS2