Vulnerabilities > Puppet > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-12-11 | CVE-2015-8470 | Information Exposure vulnerability in Puppet Enterprise The console in Puppet Enterprise 3.7.x, 3.8.x, and 2015.2.x does not set the secure flag for the JSESSIONID cookie in an HTTPS session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an HTTP session. | 6.5 |
| 2017-12-11 | CVE-2015-6502 | Cross-site Scripting vulnerability in Puppet Enterprise Cross-site scripting (XSS) vulnerability in the console in Puppet Enterprise before 2015.2.1 allows remote attackers to inject arbitrary web script or HTML via the string parameter, related to Login Redirect. | 6.1 |
| 2017-12-11 | CVE-2014-3250 | Improper Certificate Validation vulnerability in multiple products The default vhost configuration file in Puppet before 3.6.2 does not include the SSLCARevocationCheck directive, which might allow remote attackers to obtain sensitive information via a revoked certificate when a Puppet master runs with Apache 2.4. | 6.5 |
| 2017-06-30 | CVE-2017-2298 | Improper Input Validation vulnerability in Puppet Mcollective-Sshkey-Security 0.5.0 The mcollective-sshkey-security plugin before 0.5.1 for Puppet uses a server-specified identifier as part of a path where a file is written. | 6.5 |
| 2017-02-13 | CVE-2016-2787 | Improper Access Control vulnerability in multiple products The Puppet Communications Protocol in Puppet Enterprise 2015.3.x before 2015.3.3 does not properly validate certificates for the broker node, which allows remote non-whitelisted hosts to prevent runs from triggering via unspecified vectors. | 5.3 |
| 2017-02-08 | CVE-2016-9686 | Improper Input Validation vulnerability in Puppet Enterprise 2016.4.0/2016.4.2/2016.5.1 The Puppet Communications Protocol (PCP) Broker incorrectly validates message header sizes. | 5.3 |
| 2017-01-12 | CVE-2016-5715 | Open Redirect vulnerability in Puppet Enterprise Open redirect vulnerability in the Console in Puppet Enterprise 2015.x and 2016.x before 2016.4.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a // (slash slash) followed by a domain in the redirect parameter. | 6.1 |
| 2017-01-12 | CVE-2015-6501 | Open Redirect vulnerability in Puppet Enterprise Open redirect vulnerability in the Console in Puppet Enterprise before 2015.2.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the string parameter. | 6.1 |
| 2016-01-08 | CVE-2015-7328 | Information Exposure vulnerability in Puppet Enterprise Puppet Server in Puppet Enterprise before 3.8.x before 3.8.3 and 2015.2.x before 2015.2.3 uses world-readable permissions for the private key of the Certification Authority (CA) certificate during the initial installation and configuration, which might allow local users to obtain sensitive information via unspecified vectors. | 4.7 |