CVE List

CVE-2013-4968

Moderate 6.1

Puppet Enterprise before 3.0.1 allows remote attackers to (1) conduct clickjacking attacks via unspecified vectors related to the console, and (2) conduct cross-site scripting (XSS) attacks via unspecified vectors related to "live management."

Published December 11, 2019.

Affected software

Puppet Puppet Enterprise

Reference links

Sign Up for Alerts