CVE-2016-2785
Last modified
CVE-2016-2785 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. Puppet Server before 2.3.2 and Ruby puppetmaster in Puppet 4.x before 4.4.2 and in Puppet Agent before 1.4.2 might allow remote attackers to bypass intended auth.conf access restrictions by leveraging incorrect URL decoding.. EPSS estimates a 2.89% chance of exploitation in the next 30 days.
Description
Puppet Server before 2.3.2 and Ruby puppetmaster in Puppet 4.x before 4.4.2 and in Puppet Agent before 1.4.2 might allow remote attackers to bypass intended auth.conf access restrictions by leveraging incorrect URL decoding.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Puppet | Puppet | 4.0.0 |
| Puppet | Puppet | 4.1.0 |
| Puppet | Puppet | 4.2.0 |
| Puppet | Puppet | 4.2.1 |
| Puppet | Puppet | 4.2.2 |
| Puppet | Puppet | 4.2.3 |
| Puppet | Puppet | 4.3.0 |
| Puppet | Puppet | 4.3.1 |
| Puppet | Puppet | 4.3.2 |
| Puppet | Puppet | 4.4.0 |
| Puppet | Puppet | 4.4.1 |
| Puppet | Puppet Server | 2.0.0 |
| Puppet | Puppet Server | 2.1.0 |
| Puppet | Puppet Server | 2.1.1 |
| Puppet | Puppet Server | 2.1.2 |
| Puppet | Puppet Server | 2.2.0 |
| Puppet | Puppet Server | 2.3.0 |
| Puppet | Puppet Server | 2.3.1 |
| Puppet | Puppet Agent | 1.4.1 |
References
- https://puppet.com/security/cve/cve-2016-2785Vendor Advisory
- https://security.gentoo.org/glsa/201606-02Third Party Advisory
- https://puppet.com/security/cve/cve-2016-2785Vendor Advisory
- https://security.gentoo.org/glsa/201606-02Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2016-2785?
How severe is CVE-2016-2785?
How do I fix CVE-2016-2785?
Are you affected by CVE-2016-2785?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST