Security Advisory

CVE-2018-6508

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-02-09 20:00:00

Last updated 2024-09-17 01:55:41

Assigner puppet

State PUBLISHED

Description

Puppet Enterprise 2017.3.x prior to 2017.3.3 are vulnerable to a remote execution bug when a specially crafted string was passed into the facter_task or puppet_conf tasks. This vulnerability only affects tasks in the affected modules, if you are not using puppet tasks you are not affected by this vulnerability.

← Browse all CVEs View on cve.org ↗