CVE-2018-11751

Опубликовано: 16 дек. 2019

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 4.8

CVSS3: 5.4

Описание

Previous versions of Puppet Agent didn't verify the peer in the SSL connection prior to downloading the CRL. This issue is resolved in Puppet Agent 6.4.0.

Релиз	Статус	Примечание
bionic	not-affected	code not present
devel	not-affected	code not present
disco	ignored	end of life
eoan	not-affected	code not present
esm-apps/bionic	not-affected	code not present
esm-apps/xenial	not-affected	code not present
esm-infra-legacy/trusty	not-affected	code not present
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	not-affected	code not present

Показывать по

Ссылки на источники

EPSS

Процентиль: 45%

0.00223

Низкий

4.8 Medium

CVSS2

5.4 Medium

CVSS3

Связанные уязвимости

CVE-2018-11751

CVSS3: 3.7

redhat

около 6 лет назад

Previous versions of Puppet Agent didn't verify the peer in the SSL connection prior to downloading the CRL. This issue is resolved in Puppet Agent 6.4.0.

CVE-2018-11751

CVSS3: 5.4

nvd

около 6 лет назад

Previous versions of Puppet Agent didn't verify the peer in the SSL connection prior to downloading the CRL. This issue is resolved in Puppet Agent 6.4.0.

CVE-2018-11751

CVSS3: 5.4

debian

около 6 лет назад

Previous versions of Puppet Agent didn't verify the peer in the SSL co ...

GHSA-vvrg-mw82-38g2

github

больше 3 лет назад

Previous versions of Puppet Agent didn't verify the peer in the SSL connection prior to downloading the CRL. This issue is resolved in Puppet Agent 6.4.0.

EPSS

Процентиль: 45%

0.00223

Низкий

4.8 Medium

CVSS2

5.4 Medium

CVSS3

CVE-2018-11751

Описание

Пакет puppet

Ссылки на источники

Связанные уязвимости