SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

[Forgot Password]

Sample Queries

Paid content will be excluded from the download.

Download | Alert*

OVAL

ALAS-2014-288 ---- puppet

ID: oval:org.secpod.oval:def:1600199	Date: (C)2016-01-05 (M)2022-10-10
Class: PATCH	Family: unix

Puppet before 3.3.3 and 3.4 before 3.4.1 and Puppet Enterprise before 2.8.4 and 3.1 before 3.1.1 allows local users to overwrite arbitrary files via a symlink attack on unspecified files.

Platform:

Amazon Linux AMI

Product:

puppet

Reference:

cpe:/o:amazon:linux
cpe:/a:puppetlabs:puppet:2.7.21
cpe:/a:puppetlabs:puppet:2.6.10
cpe:/a:puppetlabs:puppet:2.7.22
...


30481



423868



255116



909



198683



282