Hiera
1 CVEs
product
Monthly
Untrusted search path vulnerability in Puppet Enterprise 2.8 before 2.8.7, Puppet before 2.7.26 and 3.x before 3.6.2, Facter 1.6.x and 2.x before 2.0.2, Hiera before 1.3.4, and Mcollective before. Rated medium severity (CVSS 6.2). Public exploit code available.
Information Disclosure
Facter
Marionette Collective
Hiera
Puppet
+1
NVD
CVSS 2.0
6.2
EPSS
0.1%
CVE-2014-3248
Ruby
EPSS 0%
CVSS 6.2
MEDIUM
POC
PATCH
This Month
Untrusted search path vulnerability in Puppet Enterprise 2.8 before 2.8.7, Puppet before 2.7.26 and 3.x before 3.6.2, Facter 1.6.x and 2.x before 2.0.2, Hiera before 1.3.4, and Mcollective before. Rated medium severity (CVSS 6.2). Public exploit code available.
Information Disclosure
Facter
Marionette Collective
+3
NVD