Vulnerabilities > Puppet

DATE	CVE	VULNERABILITY TITLE	RISK
2016-04-11	CVE-2015-7330	7PK - Security Features vulnerability in Puppet Enterprise 2015.3.0 Puppet Enterprise 2015.3 before 2015.3.1 allows remote attackers to bypass a host whitelist protection mechanism by leveraging the Puppet communications protocol. network low complexity puppet CWE-254	8.8
2016-01-08	CVE-2015-7328	Information Exposure vulnerability in Puppet Enterprise Puppet Server in Puppet Enterprise before 3.8.x before 3.8.3 and 2015.2.x before 2015.2.3 uses world-readable permissions for the private key of the Certification Authority (CA) certificate during the initial installation and configuration, which might allow local users to obtain sensitive information via unspecified vectors. local high complexity puppet CWE-200	4.7

Vulnerabilities > Puppet {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Puppet"}]}