Filter
-Infinity
0
Trending
Versions
2.7.0
25
2.7.1
24
2.7.2
23
2.6.0
22
2.7.3
22
2.7.4
21
2.7.10
18
2.7.5
18
2.6.1
17
2.6.2
17
2.6.3
17
2.7.6
17
2.7.8
17
2.7.9
17
2.6.4
16
2.6.5
16
2.6.6
16
2.6.7
16
2.6.8
16
2.6.9
16
2.7.11
16
2.6.10
15
2.7.7
14
2.6.11
12
2.7.12
12
2.6.12
11
2.6.13
11
2.7.13
11
2.7.14
11
2.7.16
11
2.7.17
11
2.6.14
9
2.7.18
6
1.10.0
5
2.5.0
5
2.6.15
5
2.6.16
5
2.7.19
5
2.7.20
5
2.7.20-rc1
5
0.25.0
4
0.25.1
4
1.0.0
4
1.2.0
4
2.6.17
4
5.5.0
4
0.25.2
3
0.25.3
3
0.25.4
3
0.25.5
3
Puppet ServerDenial of Service for Revocation of Auto Renewed Certificates
7.5
First published (updated )
PuppetNukeNabber allows remote attackers to cause a denial of service by connecting to the NukeNabber port…
First published (updated )
PuppetPuppet Enterprise 2016.4.x prior to 2016.4.12, Puppet Enterprise 2017.3.x prior to 2017.3.7, Puppet …
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Puppetpuppetmasterd in puppet 0.24.6 does not reset supplementary groups when it switches to a different u…
4.7
First published (updated )
PuppetPuppet 0.24.x before 0.24.9 and 0.25.x before 0.25.2 allows local users to overwrite arbitrary files…
3.3
First published (updated )
PuppetPuppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x allows local users to overwrite arbitrary…
6.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PuppetPuppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x allows local users to modify the permissi…
6.3
First published (updated )
PuppetPuppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x, when running in --edit mode, uses a pred…
6.2
First published (updated )
PuppetPuppet 2.6.0 through 2.6.3 does not properly restrict access to node resources, which allows remote …
5.5
First published (updated )
Puppet EnterprisePuppet Enterprise (PE) before 2.6.1 does not properly invalidate sessions when the session secret ha…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Puppetlib/puppet/defaults.rb in Puppet 2.7.x before 2.7.18, and Puppet Enterprise before 2.5.2, uses 0644 …
2.1
First published (updated )
Puppettelnet.rb in Puppet 2.7.x before 2.7.13 and Puppet Enterprise (PE) 1.2.x, 2.0.x, and 2.5.x before 2.…
3.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PuppetPuppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13, and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x…
3.3
First published (updated )
PuppetPuppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13, and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x…
2.1
First published (updated )
PuppetUnspecified vulnerability in Puppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13, and Puppet Enterpri…
3.5
First published (updated )
UbuntuPuppet before 3.3.3 and 3.4 before 3.4.1 and Puppet Enterprise (PE) before 2.8.4 and 3.1 before 3.1.…
2.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PuppetPuppet Module Tool (PMT), as used in Puppet 2.7.x before 2.7.23 and 3.2.x before 3.2.4, and Puppet E…
3.6
First published (updated )
PuppetUnspecified vulnerability in Puppet 2.7.x before 2.7.23 and 3.2.x before 3.2.4, and Puppet Enterpris…
5.1
First published (updated )
PuppetPuppet Labs Puppet Enterprise before 2.8.0 does not use a "randomized secret" in the CAS client conf…
First published (updated )
PuppetPuppet 2.6.x before 2.6.18 and Puppet Enterprise 1.2.x before 1.2.7 allows remote authenticated user…
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.