Vulnerabilities > Puppetlabs

DATE	CVE	VULNERABILITY TITLE	RISK
2017-02-13	CVE-2016-2787	Improper Access Control vulnerability in multiple products The Puppet Communications Protocol in Puppet Enterprise 2015.3.x before 2015.3.3 does not properly validate certificates for the broker node, which allows remote non-whitelisted hosts to prevent runs from triggering via unspecified vectors. network low complexity puppetlabs puppet CWE-284	5.3
2017-01-30	CVE-2015-7331	7PK - Security Features vulnerability in Puppetlabs Mcollective-Puppet-Agent The mcollective-puppet-agent plugin before 1.11.1 for Puppet allows remote attackers to execute arbitrary code via vectors involving the --server argument. network high complexity puppetlabs CWE-254	6.6

Vulnerabilities > Puppetlabs {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Puppetlabs"}]}