Puppet: >> Puppet Enterprise >> 2.8.2 Security Vulnerabilities
Puppet Enterprise before 3.0.1 allows remote attackers to obtain the database password via vectors related to how the password is "seeded as a console parameter," External Node Classifiers, and the lack of access control for /nodes.
CVSS Score
5.0
EPSS Score
0.003
Published
2013-08-20
Page 5