Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2017-2292

Published: 30/06/2017 Updated: 06/09/2017
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9 | Impact Score: 6 | Exploitability Score: 2.3
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Mcollective

Vulnerability Summary

Versions of MCollective before 2.10.4 deserialized YAML from agents without calling safe_load, allowing the potential for arbitrary code execution on the server. The fix for this is to call YAML.safe_load on input. This has been tested in all Puppet-supplied MCollective plugins, but there is a chance that third-party plugins could rely on this insecure behavior.

Vulnerable Product Search on Vulmon Subscribe to Product

puppet mcollective

Vendor Advisories

Debian CVElist Bug Report Logs: CVE-2014-3251
Debian Bug report logs - #758701 CVE-2014-3251 Package: src:mcollective; Maintainer for src:mcollective is Puppet Package Maintainers <pkg-puppet-devel@listsaliothdebianorg>; Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Wed, 20 Aug 2014 10:09:01 UTC Severity: important Tags: security Fixed in version mc ...
Debian CVElist Bug Report Logs: CVE-2016-2788
Debian Bug report logs - #850968 CVE-2016-2788 Package: src:mcollective; Maintainer for src:mcollective is Puppet Package Maintainers <pkg-puppet-devel@listsaliothdebianorg>; Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Wed, 11 Jan 2017 17:27:02 UTC Severity: grave Tags: fixed-upstream, security, upstrea ...
Debian CVElist Bug Report Logs: mcollective: CVE-2017-2292: Remote code execution via YAML deserialization
Debian Bug report logs - #866711 mcollective: CVE-2017-2292: Remote code execution via YAML deserialization Package: src:mcollective; Maintainer for src:mcollective is Puppet Package Maintainers <pkg-puppet-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 1 Jul 2017 06: ...
Red Hat: CVE-2017-2292
Versions of MCollective prior to 2104 deserialized YAML from agents without calling safe_load, allowing the potential for arbitrary code execution on the server The fix for this is to call YAMLsafe_load on input This has been tested in all Puppet-supplied MCollective plugins, but there is a chance that third-party plugins could rely on this in ...

References

CWE-502https://puppet.com/security/cve/cve-2017-2292https://security.gentoo.org/glsa/201709-01https://nvd.nist.govhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=758701
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040privilege escalationCVE-2024-4112CVE-2024-32872man-in-the-middleCVE-2024-32788bypassCVE-2024-3400CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook