CVSS: 3.7EPSS: 2%CPEs: 24EXPL: 1CVE-2011-3872
https://notcve.org/view.php?id=CVE-2011-3872
27 Oct 2011 — Puppet 2.6.x before 2.6.12 and 2.7.x before 2.7.6, and Puppet Enterprise (PE) Users 1.0, 1.1, and 1.2 before 1.2.4, when signing an agent certificate, adds the Puppet master's certdnsnames values to the X.509 Subject Alternative Name field of the certificate, which allows remote attackers to spoof a Puppet master via a man-in-the-middle (MITM) attack against an agent that uses an alternate DNS name for the master, aka "AltNames Vulnerability." Puppet v2.6.x antes de v2.6.12 y v2.7.x antes de v2.7.6, y Puppe... • https://github.com/puppetlabs-toy-chest/puppetlabs-cve20113872 • CWE-20: Improper Input Validation •
CVSS: 4.4EPSS: 0%CPEs: 20EXPL: 0CVE-2010-0156
https://notcve.org/view.php?id=CVE-2010-0156
03 Mar 2010 — Puppet 0.24.x before 0.24.9 and 0.25.x before 0.25.2 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/daemonout, (2) /tmp/puppetdoc.txt, (3) /tmp/puppetdoc.tex, or (4) /tmp/puppetdoc.aux temporary file. Puppet 0.24.x en versiones anteriores a la 0.24.9 y 0.25.x en versiones anteriores a la 0.25.2 permite a atacantes locales sobrescribir ficheros de su elección mediante un ataque de enlace simbólico (symlink) en el fichero temporal (1) /tmp/daemonout, (2) /tmp/puppetdoc.tx... • http://groups.google.com/group/puppet-announce/browse_thread/thread/4401823f6cbf6087 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 6.9EPSS: 0%CPEs: 2EXPL: 1CVE-2009-3564
https://notcve.org/view.php?id=CVE-2009-3564
06 Oct 2009 — puppetmasterd in puppet 0.24.6 does not reset supplementary groups when it switches to a different user, which might allow local users to access restricted files. puppetmasterd en puppet v0.24.6 no borra los grupos adicionales cuando cambia a otro usuario, lo que permite a usuarios locales acceder a ficheros restringidos. • http://projects.reductivelabs.com/issues/1806 • CWE-264: Permissions, Privileges, and Access Controls •