📦

puppet_enterprise

Vendor: puppet

Actively Exploited 0 CISA KEV List

PoC / Exploits 1 Code Available

Total RCEs 13 Remote Access

Total CVEs 329 Total Indexed

Avg. EPSS 2.37% Exploit Prob.

Latest CVE CVE-2025-5459 Jun 26

Security Vulnerability Index

Page 5 / 33

9.8 CVSS

CVE-2016-2786

RCE

The pxp-agent component in Puppet Enterprise 2015.3.x before 2015.3.3 and Puppet Agent 1.3.x before 1.3.6 does not properly validate server certificates, which might allow remote attackers to spoof brokers and execute arbitrary commands via a crafted certificate.

EPSS: 0.71%

Severity: CRITICAL

Jun 10, 2016

8.8 CVSS

CVE-2015-7330

Puppet Enterprise 2015.3 before 2015.3.1 allows remote attackers to bypass a host whitelist protection mechanism by leveraging the Puppet communications protocol.

EPSS: 0.37%

Severity: HIGH

Apr 11, 2016

4.7 CVSS

CVE-2015-7328

Puppet Server in Puppet Enterprise before 3.8.x before 3.8.3 and 2015.2.x before 2015.2.3 uses world-readable permissions for the private key of the Certification Authority (CA) certificate during the initial installation and configuration, which might allow local users to obtain sensitive information via unspecified vectors.

EPSS: 0.03%

Severity: MEDIUM

Jan 08, 2016

6.5 CVSS

CVE-2015-1029

The puppetlabs-stdlib module 2.1 through 3.0 and 4.1.0 through 4.5.x before 4.5.1 for Puppet 2.8.8 and earlier allows remote authenticated users to gain privileges or obtain sensitive information by prepopulating the fact cache.

EPSS: 0.43%

Severity: MEDIUM

Jan 16, 2015

4.0 CVSS

CVE-2014-9355

Puppet Enterprise before 3.7.1 allows remote authenticated users to obtain licensing and certificate signing request information by leveraging access to an unspecified API endpoint.

EPSS: 0.10%

Severity: MEDIUM

Dec 19, 2014

6.2 CVSS

CVE-2014-3248

Untrusted search path vulnerability in Puppet Enterprise 2.8 before 2.8.7, Puppet before 2.7.26 and 3.x before 3.6.2, Facter 1.6.x and 2.x before 2.0.2, Hiera before 1.3.4, and Mcollective before 2.5.2, when running with Ruby 1.9.1 or earlier, allows local users to gain privileges via a Trojan horse file in the current working directory, as demonstrated using (1) rubygems/defaults/operating_system.rb, (2) Win32API.rb, (3) Win32API.so, (4) safe_yaml.rb, (5) safe_yaml/deep.rb, or (6) safe_yaml/deep.so; or (7) operatingsystem.rb, (8) operatingsystem.so, (9) osfamily.rb, or (10) osfamily.so in puppet/confine.

EPSS: 0.07%

Severity: MEDIUM

Nov 16, 2014

4.4 CVSS

CVE-2014-3251

The MCollective aes_security plugin, as used in Puppet Enterprise before 3.3.0 and Mcollective before 2.5.3, does not properly validate new server certificates based on the CA certificate, which allows local users to establish unauthorized Mcollective connections via unspecified vectors related to a race condition.

EPSS: 0.03%

Severity: MEDIUM

Aug 12, 2014

5.0 CVSS

CVE-2014-3249

Puppet Enterprise 2.8.x before 2.8.7 allows remote attackers to obtain sensitive information via vectors involving hiding and unhiding nodes.

EPSS: 0.25%

Severity: MEDIUM

Jun 17, 2014

6.8 CVSS

CVE-2013-4963

Multiple cross-site request forgery (CSRF) vulnerabilities in Puppet Enterprise (PE) before 3.0.1 allow remote attackers to hijack the authentication of users for requests that deleting a (1) report, (2) group, or (3) class or possibly have other unspecified impact.

EPSS: 0.12%

Severity: MEDIUM

Mar 14, 2014

6.8 CVSS

CVE-2013-1399

Multiple cross-site request forgery (CSRF) vulnerabilities in the (1) node request management, (2) live management, and (3) user administration components in the console in Puppet Enterprise (PE) before 2.7.1 allow remote attackers to hijack the authentication of unspecified victims via unknown vectors.

EPSS: 0.12%

Severity: MEDIUM

Mar 14, 2014

Displaying 10 of 329 Total Entries

3 4 5 6 7 ... 33

Total 33 Sections