Vulnerabilities > Puppet > Puppetlabs Mysql
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-07 | CVE-2022-3275 | Command injection is possible in the puppetlabs-apt module prior to version 9.0.0. | 9.8 |
| 2022-10-07 | CVE-2022-3276 | Unspecified vulnerability in Puppet Puppetlabs-Mysql Command injection is possible in the puppetlabs-mysql module prior to version 13.0.0. | 8.8 |
| 2017-12-21 | CVE-2015-7224 | Improper Authentication vulnerability in Puppet Puppetlabs-Mysql puppetlabs-mysql 3.1.0 through 3.6.0 allow remote attackers to bypass authentication by leveraging creation of a database account without a password when a 'mysql_user' user parameter contains a host with a netmask. | 9.8 |