cbcvebase.
CVE-2014-3248
published 2014-11-16

CVE-2014-3248: Untrusted search path vulnerability in Puppet Enterprise 2.8 before 2.8.7, Puppet before 2.7.26 and 3.x before 3.6.2, Facter 1.6.x and 2.x before 2.0.2, Hiera…

medium6.2CVSS 3.1
AVLACHAuNCCICAC
Untrusted search path vulnerability in Puppet Enterprise 2.8 before 2.8.7, Puppet before 2.7.26 and 3.x before 3.6.2, Facter 1.6.x and 2.x before 2.0.2, Hiera before 1.3.4, and Mcollective before 2.5.2, when running with Ruby 1.9.1 or earlier, allows local users to gain privileges via a Trojan horse file in the current working directory, as demonstrated using (1) rubygems/defaults/operating_system.rb, (2) Win32API.rb, (3) Win32API.so, (4) safe_yaml.rb, (5) safe_yaml/deep.rb, or (6) safe_yaml/deep.so; or (7) operatingsystem.rb, (8) operatingsystem.so, (9) osfamily.rb, or (10) osfamily.so in puppet/confine.

Affected

29 ranges· showing 25
VendorProductVersion rangeFixed in
debianfacter< facter 2.0.1-1 (bookworm)facter 2.0.1-1 (bookworm)
debianhiera< facter 2.0.1-1 (bookworm)facter 2.0.1-1 (bookworm)
debianmcollective< facter 2.0.1-1 (bookworm)facter 2.0.1-1 (bookworm)
debianpuppet< facter 2.0.1-1 (bookworm)facter 2.0.1-1 (bookworm)
puppetfacter
puppetfacter
puppethiera< 1.3.41.3.4
puppethiera>= 0 < 1.3.4-11.3.4-1
puppethiera>= 0 < 1.3.4-11.3.4-1
puppethiera>= 0 < 1.3.4-11.3.4-1
puppethiera>= 0 < 1.3.4-11.3.4-1
puppethiera>= 0 < 1.3.41.3.4
puppetmarionette_collective< 2.5.22.5.2
puppetmcollective>= 0 < 2.5.2+dfsg-12.5.2+dfsg-1
puppetmcollective>= 0 < 2.5.2+dfsg-12.5.2+dfsg-1
puppetpuppet< 2.7.262.7.26
puppetpuppet>= 0 < 3.7.0-13.7.0-1
puppetpuppet>= 0 < 2.7.262.7.26
puppetpuppet>= 0 < 3.4.3-1ubuntu1.23.4.3-1ubuntu1.2
puppetpuppet>= 3.0.0 < 3.6.23.6.2
puppetpuppet>= 3.6.0 < 3.6.23.6.2
puppetpuppet_enterprise>= 2.8.0 < 2.8.72.8.7
puppetlabsfacter>= 0 < 2.0.1-12.0.1-1
puppetlabsfacter>= 0 < 2.0.1-12.0.1-1
puppetlabsfacter>= 0 < 2.0.1-12.0.1-1

CVSS provenance

nvd6.2MEDIUMAV:L/AC:H/Au:N/C:C/I:C/A:C
osv6.2MEDIUM