The puppetlabs-stdlib module 2.1 through 3.0 and 4.1.0 through 4.5.x before 4.5.1 for Puppet 2.8.8 and earlier allows remote authenticated users to gain privileges or obtain sensitive information by prepopulating the fact cache.
References
Link | Resource |
---|---|
http://puppetlabs.com/security/cve/cve-2015-1029 | Vendor Advisory |
http://secunia.com/advisories/62328 | |
http://puppetlabs.com/security/cve/cve-2015-1029 | Vendor Advisory |
http://secunia.com/advisories/62328 |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 02:24
Type | Values Removed | Values Added |
---|---|---|
References | () http://puppetlabs.com/security/cve/cve-2015-1029 - Vendor Advisory | |
References | () http://secunia.com/advisories/62328 - |
Information
Published : 2015-01-16 16:59
Updated : 2024-11-21 02:24
NVD link : CVE-2015-1029
Mitre link : CVE-2015-1029
CVE.ORG link : CVE-2015-1029
JSON object : View
Products Affected
puppet
- puppet_enterprise
- stdlib
CWE
CWE-264
Permissions, Privileges, and Access Controls