Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.5
CVSSv2

CVE-2015-1029

Published: 16/01/2015 Updated: 11/07/2019
CVSS v2 Base Score: 6.5 | Impact Score: 6.4 | Exploitability Score: 8
VMScore: 578
Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Subscribe to Puppet

Vulnerability Summary

The puppetlabs-stdlib module 2.1 up to and including 3.0 and 4.1.0 up to and including 4.5.x prior to 4.5.1 for Puppet 2.8.8 and previous versions allows remote authenticated users to gain privileges or obtain sensitive information by prepopulating the fact cache.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

puppet stdlib 4.5.0

puppet stdlib 2.3.3

puppet stdlib 2.3.2

puppet stdlib 2.3.1

puppet stdlib 2.3.0

puppet stdlib 2.2.1

puppet stdlib 4.2.2

puppet stdlib 4.2.1

puppet stdlib 4.2.0

puppet stdlib 4.1.0

puppet stdlib 4.3.2

puppet stdlib 4.3.0

puppet stdlib 3.0.0

puppet stdlib 2.4.0

puppet stdlib 2.2.0

puppet stdlib 2.1.1

puppet stdlib 4.4.0

puppet stdlib 4.3.1

puppet stdlib 2.5.0

puppet stdlib 2.1.3

puppet stdlib 2.1.2

puppet stdlib 2.1.0

Vendor Advisories

Debian CVElist Bug Report Logs: puppet-module-puppetlabs-stdlib: CVE-2015-1029
Debian Bug report logs - #775535 puppet-module-puppetlabs-stdlib: CVE-2015-1029 Package: puppet-module-puppetlabs-stdlib; Maintainer for puppet-module-puppetlabs-stdlib is Puppet Package Maintainers <pkg-puppet-devel@listsaliothdebianorg>; Source for puppet-module-puppetlabs-stdlib is src:puppet-module-puppetlabs-stdlib (PTS, bui ...

Github Repositories

https://github.com/puppetlabs/puppetlabs-compliance_profile

This module is an example profile to manage RHEL system configurations that comply with various regulations such as STIG, PCI, HIPAA, and more

About this Module This module is an example of how to use the System Integrity Monitoring Platform (SIMP) Puppet modules released by the National Security Agency (NSA) In addition to the example profile, an example Puppetfile and Hiera data are also provided Getting Started Adding the Modules This repository contains an example Puppetfile that can be used with Puppet Enterpri

References

CWE-264http://puppetlabs.com/security/cve/cve-2015-1029http://secunia.com/advisories/62328https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775535https://nvd.nist.govhttps://github.com/puppetlabs/puppetlabs-compliance_profile
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028CVE-2024-32406CVE-2024-25624IMAPCVE-2024-2310CVE-2024-0874CVE-2024-20359XXEremote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook