CVE-2016-5716

Published: Aug 9, 2017

Modified: Sep 16, 2024

PUBLISHED

Description

The console in Puppet Enterprise 2015.x and 2016.x prior to 2016.4.0 includes unsafe string reads that potentially allows for remote code execution on the console node.

Vendor	Product	Versions
Puppet	Puppet Enterprise	affected `PE < 2016.4.0`

References

https://puppet.com/security/cve/pe-console-oct-2016

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2016-5716

Description

Affected Products

References