Filter
AND
Versions
2.6.0
14
2.7.0
13
2.7.1
13
2.7.2
13
2.6.1
12
2.6.2
12
2.6.3
12
2.7.3
12
2.6.4
11
2.6.5
11
2.6.6
11
2.6.7
11
2.6.8
11
2.6.9
11
2.7.4
11
2.6.10
10
2.7.10
8
2.7.5
8
2.7.6
8
2.7.7
8
2.7.8
8
2.7.9
8
2.6.11
7
2.6.12
7
2.6.13
7
2.7.11
6
2.6.14
5
2.7.12
5
2.7.13
5
2.7.14
5
2.7.16
5
2.7.17
5
2.6.15
4
2.6.16
4
0.25.0
3
0.25.1
3
0.25.2
3
0.25.3
3
0.25.4
3
0.25.5
3
0.25.6
3
2.5.0
3
2.6.17
3
2.7.18
3
2.7.19
3
2.7.20
3
2.7.20-rc1
3
2021.0.0
3
1.2.6
2
1.0.0
1
1.1.0
1
1.10.0
1
1.2.0
1
3.2.0
1
3.2.1
1
3.2.2
1
3.2.3
1
3.6.0
1
5.5.0
1
6.0.0
1
Puppet by Puppet LabsPuppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x allows local users to overwrite arbitrary…
6.3
First published (updated )
Puppet by Puppet LabsPuppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x allows local users to modify the permissi…
6.3
First published (updated )
Puppet by Puppet LabsPuppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x, when running in --edit mode, uses a pred…
6.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Puppet by Puppet LabsPuppet 2.6.0 through 2.6.3 does not properly restrict access to node resources, which allows remote …
5.5
First published (updated )
Puppetlabs Puppet EnterprisePuppet Enterprise (PE) before 2.6.1 does not properly invalidate sessions when the session secret ha…
First published (updated )
Puppet by Puppet LabsCommand Injection, OS Command Injection
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Puppet by Puppet LabsUnspecified vulnerability in Puppet 2.7.x before 2.7.23 and 3.2.x before 3.2.4, and Puppet Enterpris…
5.1
First published (updated )
Puppet by Puppet LabsPuppet Labs Puppet Enterprise before 2.8.0 does not use a "randomized secret" in the CAS client conf…
First published (updated )
Puppet by Puppet LabsPuppet 2.6.x before 2.6.18 and Puppet Enterprise 1.2.x before 1.2.7 allows remote authenticated user…
6.5
First published (updated )
Puppet by Puppet LabsThe default configuration for puppet masters 0.25.0 and later in Puppet before 2.6.18, 2.7.x before …
First published (updated )
Puppet by Puppet LabsPuppet 2.7.x before 2.7.21 and 3.1.x before 3.1.1, and Puppet Enterprise 2.7.x before 2.7.2, does no…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Puppet by Puppet LabsPuppet before 2.6.18, 2.7.x before 2.7.21, and 3.1.x before 3.1.1, and Puppet Enterprise before 1.2.…
4.9
First published (updated )
Puppet by Puppet LabsThe default vhost configuration file in Puppet before 3.6.2 does not include the SSLCARevocationChec…
6.5
First published (updated )
redhat/puppet-agentA flaw was found in Puppet, where changes in the application lead to node declarations having increa…
6.5
First published (updated )
Puppet by Puppet LabsA flaw was discovered in bolt-server and ace where running a task with sensitive parameters results …
4.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PuppetA flaw was discovered in Puppet Agent where the agent may silently ignore Augeas settings or may be …
6.5
First published (updated )
Puppet by Puppet LabsA flaw was divered in Puppet Enterprise and other Puppet products where sensitive plan parameters ma…
4.4
First published (updated )
Puppet by Puppet LabsThe change_user method in the SUIDManager (lib/puppet/util/suidmanager.rb) in Puppet 2.6.x before 2.…
6.9
First published (updated )
redhat/puppet-agentIn previous versions of Puppet Agent it was possible for the agent to retrieve facts from an environ…
6.5
First published (updated )
Puppet by Puppet LabsPuppet 2.6.x before 2.6.14 and 2.7.x before 2.7.11, and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x…
4.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.