Puppet Labs Puppet Enterprise prior to 2.8.0 does not use a "randomized secret" in the CAS client config file (cas_client_config.yml) when upgrading from older 1.2.x or 2.0.x versions, which allows remote malicious users to obtain console access via a crafted cookie.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
puppet puppet enterprise 2.5.2 |
||
puppetlabs puppet 2.6.0 |
||
puppet puppet enterprise 2.5.1 |
||
puppetlabs puppet 2.5.0 |
||
puppet puppet enterprise |
||
puppetlabs puppet 1.1.0 |
||
puppetlabs puppet 1.0.0 |
||
puppet puppet enterprise 2.0.0 |
||
puppetlabs puppet 1.2.0 |
Vulmon