CVE-2018-6512
published 2018-06-11CVE-2018-6512: The previous version of Puppet Enterprise 2018.1 is vulnerable to unsafe code execution when upgrading pe-razor-server. Affected releases are Puppet…
critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
The previous version of Puppet Enterprise 2018.1 is vulnerable to unsafe code execution when upgrading pe-razor-server. Affected releases are Puppet Enterprise: 2018.1.x versions prior to 2018.1.1 and razor-server and pe-razor-server prior to 1.9.0.0.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | puppet | — | — |
| puppet | pe-razor-server | < 1.9.0.0 | 1.9.0.0 |
| puppet | puppet_enterprise | >= 2018.1.0 < 2018.1.1 | 2018.1.1 |
| puppet | razor-server | < 1.9.0.0 | 1.9.0.0 |