Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8
CVE-2022-3276
- EPSS 0.38%
- Published 07.10.2022 21:15:12
- Last modified 21.11.2024 07:19:11
Command injection is possible in the puppetlabs-mysql module prior to version 13.0.0. A malicious actor is able to exploit this vulnerability only if they are able to provide unsanitized input to the module. This condition is rare in most deployments...
9.8
CVE-2022-3275
- EPSS 0.85%
- Published 07.10.2022 21:15:11
- Last modified 21.11.2024 07:19:11
Command injection is possible in the puppetlabs-apt module prior to version 9.0.0. A malicious actor is able to exploit this vulnerability only if they are able to provide unsanitized input to the module. This condition is rare in most deployments of...
9.8
CVE-2015-7224
- EPSS 0.73%
- Published 21.12.2017 15:29:00
- Last modified 20.04.2025 01:37:25
puppetlabs-mysql 3.1.0 through 3.6.0 allow remote attackers to bypass authentication by leveraging creation of a database account without a password when a 'mysql_user' user parameter contains a host with a netmask.
1