Download
| Alert*
oval:org.secpod.oval:def:10643
The host is installed with Puppet 2.6.x before 2.6.18 or Puppet Enterprise 1.2.x before 1.2.7 and is prone to remote code-execution vulnerability. A flaw is present in the applications, which fail to handle a crafted request for a report. Successful exploitation allows remote authenticated users to ... oval:org.secpod.oval:def:104775 Puppet lets you centrally manage every important aspect of your system using a cross-platform specification language that manages all the separate elements normally aggregated in different files, like users, cron jobs, and hosts, along with obviously discrete elements like packages, services, and fi ... oval:org.secpod.oval:def:10649 The host is installed with Puppet 2.6.x before 2.6.18 and is prone to remote code-execution vulnerability. A flaw is present in the applications, which fail to handle a crafted request for a report. Successful exploitation allows remote authenticated users to execute arbitrary code on the puppet mas ... oval:org.secpod.oval:def:600986 Multiple vulnerabilities were discovered in Puppet, a centralized configuration management system. CVE-2013-1640 An authenticated malicious client may request its catalog from the puppet master, and cause the puppet master to execute arbitrary code. The puppet master must be made to invoke the `temp ... oval:org.secpod.oval:def:105685 Puppet lets you centrally manage every important aspect of your system using a cross-platform specification language that manages all the separate elements normally aggregated in different files, like users, cron jobs, and hosts, along with obviously discrete elements like packages, services, and fi ... |