First published: Fri Jan 16 2015(Updated: )
The puppetlabs-stdlib module 2.1 through 3.0 and 4.1.0 through 4.5.x before 4.5.1 for Puppet 2.8.8 and earlier allows remote authenticated users to gain privileges or obtain sensitive information by prepopulating the fact cache.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Puppet Stdlib | =2.1.0 | |
Puppet Stdlib | =2.1.1 | |
Puppet Stdlib | =2.1.2 | |
Puppet Stdlib | =2.1.3 | |
Puppet Stdlib | =2.2.0 | |
Puppet Stdlib | =2.2.1 | |
Puppet Stdlib | =2.3.0 | |
Puppet Stdlib | =2.3.1 | |
Puppet Stdlib | =2.3.2 | |
Puppet Stdlib | =2.3.3 | |
Puppet Stdlib | =2.4.0 | |
Puppet Stdlib | =2.5.0 | |
Puppet Stdlib | =3.0.0 | |
Puppet Stdlib | =4.1.0 | |
Puppet Stdlib | =4.2.0 | |
Puppet Stdlib | =4.2.1 | |
Puppet Stdlib | =4.2.2 | |
Puppet Stdlib | =4.3.0 | |
Puppet Stdlib | =4.3.1 | |
Puppet Stdlib | =4.3.2 | |
Puppet Stdlib | =4.4.0 | |
Puppet Stdlib | =4.5.0 | |
Puppet Puppet Enterprise | <=2.8.8 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.