CVE-2016-2788

Опубликовано: 13 фев. 2017

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 7.5

CVSS3: 9.8

Описание

MCollective 2.7.0 and 2.8.x before 2.8.9, as used in Puppet Enterprise, allows remote attackers to execute arbitrary code via vectors related to the mco ping command.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected
cosmic	not-affected	2.12.0+dfsg-1
devel	not-affected	2.12.0+dfsg-1
esm-apps/bionic	not-affected
esm-apps/xenial	not-affected
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected]
precise	ignored	end of life
precise/esm	DNE	precise was needs-triage
trusty	not-affected

Показывать по

Ссылки на источники

EPSS

Процентиль: 83%

0.01957

Низкий

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

CVE-2016-2788

CVSS3: 6.1

redhat

больше 9 лет назад

MCollective 2.7.0 and 2.8.x before 2.8.9, as used in Puppet Enterprise, allows remote attackers to execute arbitrary code via vectors related to the mco ping command.

CVE-2016-2788

CVSS3: 9.8

nvd

почти 9 лет назад

MCollective 2.7.0 and 2.8.x before 2.8.9, as used in Puppet Enterprise, allows remote attackers to execute arbitrary code via vectors related to the mco ping command.

CVE-2016-2788

CVSS3: 9.8

debian

почти 9 лет назад

MCollective 2.7.0 and 2.8.x before 2.8.9, as used in Puppet Enterprise ...

GHSA-v3fx-f8x7-f9vf

CVSS3: 9.8

github

больше 3 лет назад

MCollective 2.7.0 and 2.8.x before 2.8.9, as used in Puppet Enterprise, allows remote attackers to execute arbitrary code via vectors related to the mco ping command.

EPSS

Процентиль: 83%

0.01957

Низкий

7.5 High

CVSS2

9.8 Critical

CVSS3

CVE-2016-2788

Описание

Пакет mcollective

Ссылки на источники

Связанные уязвимости