Filter
AND
Software
Puppetlabs Puppet EnterpriseBroken Session Management in Puppet Enterprise
9.8
First published (updated )
Puppetlabs Puppet EnterpriseA privilege escalation allowing remote code execution was discovered in the orchestration service.
9.8
First published (updated )
Fedoraproject FedoraPuppetlabs-apt Command Injection
9.8
First published (updated )
Puppet FirewallPuppet Firewall Module May Leave Unmanaged Rules
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PuppetA flaw was discovered in Puppet Agent and Puppet Server that may result in a leak of HTTP credential…
9.8
First published (updated )
Red Hat OpenShiftmcollective has a default password set at install
9.8
First published (updated )
Puppetlabs Puppet EnterpriseThe express install, which is the suggested way to install Puppet Enterprise, gives the user a URL a…
9.8
First published (updated )
Puppet DiscoveryPreviously, Puppet Discovery was shipped with a default generated TLS certificate in the nginx conta…
9.8
First published (updated )
Puppetlabs Puppet EnterpriseWhen users are configured to use startTLS with RBAC LDAP, at login time, the user's credentials are …
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Puppet DiscoveryPuppet Discovery can leak authentication information
9.8
First published (updated )
Puppet Labs MySQLpuppetlabs-mysql 3.1.0 through 3.6.0 allow remote attackers to bypass authentication by leveraging c…
9.8
First published (updated )
Puppet MCollectiveVersions of MCollective prior to 2.10.4 deserialized YAML from agents without calling safe_load, all…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Puppet MCollectiveOn Windows installations of the mcollective-puppet-agent plugin, version 1.12.0, a non-administrator…
First published (updated )
Puppet MCollectiveMCollective 2.7.0 and 2.8.x before 2.8.9, as used in Puppet Enterprise, allows remote attackers to e…
9.8
First published (updated )
Puppet by Puppet LabsPuppet Server before 2.3.2 and Ruby puppetmaster in Puppet 4.x before 4.4.2 and in Puppet Agent befo…
9.8
First published (updated )
Puppet by Puppet LabsThe (1) template and (2) inline_template functions in the master server in Puppet before 2.6.18, 2.7…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.