CVE-2018-6513
Last modified
CVE-2018-6513 is a vulnerability of currently unknown severity. Puppet Enterprise 2016.4.x prior to 2016.4.12, Puppet Enterprise 2017.3.x prior to 2017.3.7, Puppet Enterprise 2018.1.x prior to 2018.1.1, Puppet Agent 1.10.x prior to 1.10.13, Puppet Agent 5.3.x prior to 5.3.7, and Puppet Agent 5.5.x prior to 5.5.2, were vulnerable to an attack where an unprivileged user on Windows agents could write custom facts that can escalate privileges on the next puppet run. This was possible through the loading of shared libraries from untrusted paths.. EPSS estimates a 1.12% chance of exploitation in the next 30 days.
Description
Puppet Enterprise 2016.4.x prior to 2016.4.12, Puppet Enterprise 2017.3.x prior to 2017.3.7, Puppet Enterprise 2018.1.x prior to 2018.1.1, Puppet Agent 1.10.x prior to 1.10.13, Puppet Agent 5.3.x prior to 5.3.7, and Puppet Agent 5.5.x prior to 5.5.2, were vulnerable to an attack where an unprivileged user on Windows agents could write custom facts that can escalate privileges on the next puppet run. This was possible through the loading of shared libraries from untrusted paths.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Puppet | Puppet | >= 1.10.0, < 1.10.13 |
| Puppet | Puppet | >= 5.3.0, < 5.3.7 |
| Puppet | Puppet | >= 5.5.0, < 5.5.2 |
| Puppet | Puppet Enterprise | >= 2016.4.0, < 2016.4.12 |
| Puppet | Puppet Enterprise | >= 2017.3.0, < 2017.3.7 |
| Puppet | Puppet Enterprise | >= 2018.1.0, < 2018.1.1 |
References
- https://puppet.com/security/cve/CVE-2018-6513Vendor Advisory
- https://puppet.com/security/cve/CVE-2018-6513Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2018-6513?
How severe is CVE-2018-6513?
How do I fix CVE-2018-6513?
Are you affected by CVE-2018-6513?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST