CVE-2014-3249CVE-2014-3249

Affected configuration(s):

cpe:/a:puppetlabs:puppet:2.8.0:-:enterprise
cpe:/a:puppetlabs:puppet:2.8.1:-:enterprise
cpe:/a:puppetlabs:puppet:2.8.2:-:enterprise
cpe:/a:puppetlabs:puppet:2.8.3:-:enterprise
cpe:/a:puppetlabs:puppet:2.8.4::~~enterprise~~~
cpe:/a:puppetlabs:puppet:2.8.5::~~enterprise~~~
cpe:/a:puppetlabs:puppet:2.8.6::~~enterprise~~~

Date published: 2014-06-17T10:55:06.720-04:00

Date last modified: 2014-06-18T09:29:15.620-04:00

CVSS Score: 5.0

Principal attack vector: NETWORK

Complexity:  LOW

Reference URL: http://puppetlabs.com/security/cve/cve-2014-3249

Summary: Puppet Enterprise 2.8.x before 2.8.7 allows remote attackers to obtain sensitive information via vectors involving hiding and unhiding nodes.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *