cbcvebase.

Puppet Enterprise vulnerabilities

89 known vulnerabilities affecting puppet/puppet_enterprise.

Total CVEs
89
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL9HIGH18MEDIUM51LOW11

Vulnerabilities

Page 4 of 5
CVE-2017-10689P4MEDIUMCVSS 5.5fixed in 2016.4.10≥ 2017.1.0, < 2017.3.4+1 more2018-02-09
CVE-2017-10689 [MEDIUM] CWE-269 CVE-2017-10689: In previous versions of Puppet Agent it was possible to install a module with world writable permiss In previous versions of Puppet Agent it was possible to install a module with world writable permissions. Puppet Agent 5.3.4 and 1.10.10 included a fix to this vulnerability.
nvd
CVE-2013-4971P4MEDIUMCVSS 5.0≤ 3.1.1v3.0.0+2 more2014-03-09
CVE-2013-4971 [MEDIUM] CWE-264 CVE-2013-4971: Puppet Enterprise before 3.2.0 does not properly restrict access to node endpoints in the console, w Puppet Enterprise before 3.2.0 does not properly restrict access to node endpoints in the console, which allows remote attackers to obtain sensitive information via unspecified vectors.
nvd
CVE-2012-3867P4MEDIUMCVSS 4.3≤ 2.5.12012-08-06
CVE-2012-3867 [MEDIUM] CWE-264 CVE-2012-3867: lib/puppet/ssl/certificate_authority.rb in Puppet before 2.6.17 and 2.7.x before 2.7.18, and Puppet lib/puppet/ssl/certificate_authority.rb in Puppet before 2.6.17 and 2.7.x before 2.7.18, and Puppet Enterprise before 2.5.2, does not properly restrict the characters in the Common Name field of a Certificate Signing Request (CSR), which makes it easier for user-assisted remote attackers to trick administrators into signing a crafted agent certificate
nvd
CVE-2013-2275P4MEDIUMCVSS 4.0v3.1.0v2.7.0+1 more2013-03-20
CVE-2013-2275 [MEDIUM] CVE-2013-2275: The default configuration for puppet masters 0.25.0 and later in Puppet before 2.6.18, 2.7.x before The default configuration for puppet masters 0.25.0 and later in Puppet before 2.6.18, 2.7.x before 2.7.21, and 3.1.x before 3.1.1, and Puppet Enterprise before 1.2.7 and 2.7.x before 2.7.2, allows remote authenticated nodes to submit reports for other nodes via unspecified vectors.
nvd
CVE-2013-4958P4MEDIUMCVSS 6.9≤ 3.0.0v2.5.1+5 more2013-08-20
CVE-2013-4958 [MEDIUM] CWE-287 CVE-2013-4958: Puppet Enterprise before 3.0.1 does not use a session timeout, which makes it easier for attackers t Puppet Enterprise before 3.0.1 does not use a session timeout, which makes it easier for attackers to gain privileges by leveraging an unattended workstation.
nvd
CVE-2015-6501P4MEDIUMCVSS 6.1≤ 2015.2.02017-01-12
CVE-2015-6501 [MEDIUM] CWE-601 CVE-2015-6501: Open redirect vulnerability in the Console in Puppet Enterprise before 2015.2.1 allows remote attack Open redirect vulnerability in the Console in Puppet Enterprise before 2015.2.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the string parameter.
nvd
CVE-2013-4964P4MEDIUMCVSS 5.0≤ 3.0.0v2.5.1+5 more2013-08-20
CVE-2013-4964 [MEDIUM] CWE-264 CVE-2013-4964: Puppet Enterprise before 3.0.1 does not set the secure flag for the session cookie in an https sessi Puppet Enterprise before 3.0.1 does not set the secure flag for the session cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.
nvd
CVE-2012-3865P4LOWCVSS 3.5≤ 2.5.12012-08-06
CVE-2012-3865 [LOW] CWE-22 CVE-2012-3865: Directory traversal vulnerability in lib/puppet/reports/store.rb in Puppet before 2.6.17 and 2.7.x b Directory traversal vulnerability in lib/puppet/reports/store.rb in Puppet before 2.6.17 and 2.7.x before 2.7.18, and Puppet Enterprise before 2.5.2, when Delete is enabled in auth.conf, allows remote authenticated users to delete arbitrary files on the puppet master server via a .. (dot dot) in a node name.
nvd
CVE-2013-4961P4MEDIUMCVSS 5.0≤ 3.0.0v2.5.1+5 more2013-08-20
CVE-2013-4961 [MEDIUM] CWE-200 CVE-2013-4961: Puppet Enterprise before 3.0.1 includes version information for the Apache and Phusion Passenger pro Puppet Enterprise before 3.0.1 includes version information for the Apache and Phusion Passenger products in its HTTP response headers, which allows remote attackers to obtain sensitive information.
nvd
CVE-2014-3249P4MEDIUMCVSS 5.0v2.8.0v2.8.1+5 more2014-06-17
CVE-2014-3249 [MEDIUM] CWE-200 CVE-2014-3249: Puppet Enterprise 2.8.x before 2.8.7 allows remote attackers to obtain sensitive information via vec Puppet Enterprise 2.8.x before 2.8.7 allows remote attackers to obtain sensitive information via vectors involving hiding and unhiding nodes.
nvd
CVE-2012-5158P4MEDIUMCVSS 4.0≤ 2.6.0v2.0.0+2 more2014-03-14
CVE-2012-5158 [MEDIUM] CWE-287 CVE-2012-5158: Puppet Enterprise (PE) before 2.6.1 does not properly invalidate sessions when the session secret ha Puppet Enterprise (PE) before 2.6.1 does not properly invalidate sessions when the session secret has changed, which allows remote authenticated users to retain access via unspecified vectors.
nvd
CVE-2012-1987P4LOWCVSS 3.5≥ 1.0, < 2.5.12012-05-29
CVE-2012-1987 [LOW] CVE-2012-1987: Unspecified vulnerability in Puppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13, and Puppet Enterpri Unspecified vulnerability in Puppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13, and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x, 2.0.x, and 2.5.x before 2.5.1 allows remote authenticated users with agent SSL keys to (1) cause a denial of service (memory consumption) via a REST request to a stream that triggers a thread block, as demonstrated using CVE-2012-198
nvd
CVE-2012-1054P4MEDIUMCVSS 4.4v1.2.0v1.2.1+6 more2012-05-29
CVE-2012-1054 [MEDIUM] CWE-264 CVE-2012-1054: Puppet 2.6.x before 2.6.14 and 2.7.x before 2.7.11, and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x Puppet 2.6.x before 2.6.14 and 2.7.x before 2.7.11, and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x, 2.0.x before 2.0.3, when managing a user login file with the k5login resource type, allows local users to gain privileges via a symlink attack on .k5login.
nvd
CVE-2014-9355P4MEDIUMCVSS 4.0≤ 3.7.02014-12-19
CVE-2014-9355 [MEDIUM] CWE-200 CVE-2014-9355: Puppet Enterprise before 3.7.1 allows remote authenticated users to obtain licensing and certificate Puppet Enterprise before 3.7.1 allows remote authenticated users to obtain licensing and certificate signing request information by leveraging access to an unspecified API endpoint.
nvd
CVE-2013-4955P4MEDIUMCVSS 5.8≤ 3.0.0v2.5.1+5 more2013-08-20
CVE-2013-4955 [MEDIUM] CWE-20 CVE-2013-4955: Open redirect vulnerability in the login page in Puppet Enterprise before 3.0.1 allows remote attack Open redirect vulnerability in the login page in Puppet Enterprise before 3.0.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the service parameter.
nvd
CVE-2015-7328P4MEDIUMCVSS 4.7v3.8.0v3.8.1+4 more2016-01-08
CVE-2015-7328 [MEDIUM] CWE-200 CVE-2015-7328: Puppet Server in Puppet Enterprise before 3.8.x before 3.8.3 and 2015.2.x before 2015.2.3 uses world Puppet Server in Puppet Enterprise before 3.8.x before 3.8.3 and 2015.2.x before 2015.2.3 uses world-readable permissions for the private key of the Certification Authority (CA) certificate during the initial installation and configuration, which might allow local users to obtain sensitive information via unspecified vectors.
nvd
CVE-2021-27019P4MEDIUMCVSS 4.3fixed in 2019.8.62021-08-30
CVE-2021-27019 [MEDIUM] CWE-532 CVE-2021-27019: PuppetDB logging included potentially sensitive system information. PuppetDB logging included potentially sensitive system information.
nvd
CVE-2021-27026P4MEDIUMCVSS 4.4fixed in 2019.8.92021-11-18
CVE-2021-27026 [MEDIUM] CWE-532 CVE-2021-27026: A flaw was divered in Puppet Enterprise and other Puppet products where sensitive plan parameters ma A flaw was divered in Puppet Enterprise and other Puppet products where sensitive plan parameters may be logged
nvd
CVE-2012-1986P4LOWCVSS 2.1v2.5.0v1.2.0+7 more2012-05-29
CVE-2012-1986 [LOW] CWE-264 CVE-2012-1986: Puppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13, and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x Puppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13, and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x, 2.0.x, and 2.5.x before 2.5.1 allows remote authenticated users with an authorized SSL key and certain permissions on the puppet master to read arbitrary files via a symlink attack in conjunction with a crafted REST request for a file in a filebucket.
nvd
CVE-2012-0891P4MEDIUMCVSS 4.3v1.0v1.1+2 more2014-03-14
CVE-2012-0891 [MEDIUM] CWE-79 CVE-2012-0891: Multiple cross-site scripting (XSS) vulnerabilities in Puppet Dashboard 1.0 before 1.2.5 and Enterpr Multiple cross-site scripting (XSS) vulnerabilities in Puppet Dashboard 1.0 before 1.2.5 and Enterprise 1.0 before 1.2.5 and 2.x before 2.0.1 allow remote attackers to inject arbitrary web script or HTML via unspecified fields.
nvd
Puppet Enterprise vulnerabilities | cvebase