Skip to main content

Mcollective Puppet Agent

2 CVEs product

Monthly

CVE-2017-2290 HIGH This Week

On Windows installations of the mcollective-puppet-agent plugin, version 1.12.0, a non-administrator user can create an executable that will be executed with administrator privileges on the next "mco. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Microsoft Information Disclosure Mcollective Puppet Agent
NVD
CVSS 3.1
8.8
EPSS
0.4%
CVE-2015-7331 MEDIUM This Month

The mcollective-puppet-agent plugin before 1.11.1 for Puppet allows remote attackers to execute arbitrary code via vectors involving the --server argument. Rated medium severity (CVSS 6.6), this vulnerability is remotely exploitable. No vendor patch available.

RCE Mcollective Puppet Agent
NVD
CVSS 3.0
6.6
EPSS
0.4%
EPSS 0% CVSS 8.8
HIGH This Week

On Windows installations of the mcollective-puppet-agent plugin, version 1.12.0, a non-administrator user can create an executable that will be executed with administrator privileges on the next "mco. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Microsoft Information Disclosure Mcollective Puppet Agent
NVD
EPSS 0% CVSS 6.6
MEDIUM This Month

The mcollective-puppet-agent plugin before 1.11.1 for Puppet allows remote attackers to execute arbitrary code via vectors involving the --server argument. Rated medium severity (CVSS 6.6), this vulnerability is remotely exploitable. No vendor patch available.

RCE Mcollective Puppet Agent
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy