📦

mcollective-puppet-agent

Vendor: puppet

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 17 Total Indexed

Avg. EPSS 0.39% Exploit Prob.

Latest CVE CVE-2017-2290 Mar 03

Security Vulnerability Index

Page 1 / 2

8.8 CVSS

CVE-2017-2290

On Windows installations of the mcollective-puppet-agent plugin, version 1.12.0, a non-administrator user can create an executable that will be executed with administrator privileges on the next "mco puppet" run. Puppet Enterprise users are not affected. This is resolved in mcollective-puppet-agent 1.12.1.

EPSS: 0.39%

Severity: HIGH

Mar 03, 2017

Displaying 1 of 17 Total Entries

1 2

Total 2 Sections