Search Results (Refine Search)
- Keyword (text search): cpe:2.3:a:puppet:puppet_enterprise:3.2.3:*:*:*:*:*:*:*
- CPE Name Search: true
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2015-6501 |
Open redirect vulnerability in the Console in Puppet Enterprise before 2015.2.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the string parameter. Published: January 12, 2017; 6:59:00 PM -0500 |
V4.0:(not available) V3.0: 6.1 MEDIUM V2.0: 5.8 MEDIUM |
CVE-2014-9355 |
Puppet Enterprise before 3.7.1 allows remote authenticated users to obtain licensing and certificate signing request information by leveraging access to an unspecified API endpoint. Published: December 19, 2014; 10:59:25 AM -0500 |
V4.0:(not available) V3.x:(not available) V2.0: 4.0 MEDIUM |