CVE-2011-3872

Puppet 2.6.x before 2.6.12 and 2.7.x before 2.7.6, and Puppet Enterprise (PE) Users 1.0, 1.1, and 1.2 before 1.2.4, when signing an agent certificate, adds the Puppet master's certdnsnames values to the X.509 Subject Alternative Name field of the certificate, which allows remote attackers to spoof a Puppet master via a man-in-the-middle (MITM) attack against an agent that uses an alternate DNS name for the master, aka "AltNames Vulnerability."

Published: Oct 27, 2011
Updated: Apr 13, 2023
CVE: CVE-2011-3872
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 2.6
AV:N/AC:H/Au:N/C:N/I:P/A:N

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
puppetlabs / puppet	2.7.0	2.7.0.x
puppetlabs / puppet	2.7.1	2.7.1.x
puppet / puppet	2.6.0	2.6.0.x
puppet / puppet	2.6.1	2.6.1.x
puppet / puppet	2.6.2	2.6.2.x
puppet / puppet	2.6.3	2.6.3.x
puppet / puppet	2.6.4	2.6.4.x
puppet / puppet	2.6.5	2.6.5.x
puppet / puppet	2.6.6	2.6.6.x
puppet / puppet	2.6.7	2.6.7.x
puppet / puppet	2.6.8	2.6.8.x
puppet / puppet	2.6.9	2.6.9.x
puppet / puppet	2.6.10	2.6.10.x
puppet / puppet	2.6.11	2.6.11.x
puppet / puppet	2.7.2	2.7.2.x
puppet / puppet	2.7.3	2.7.3.x
puppet / puppet	2.7.4	2.7.4.x
puppet / puppet	2.7.5	2.7.5.x
puppetlabs / puppet_enterprise_users	1.0	1.0.x
puppetlabs / puppet_enterprise_users	1.1	1.1.x
puppet / puppet_enterprise	1.2.0	1.2.0.x
puppet / puppet_enterprise	1.2.1	1.2.1.x
puppet / puppet_enterprise	1.2.2	1.2.2.x
puppet / puppet_enterprise	1.2.3	1.2.3.x

Vulnerability Database

289,599

CVE-2011-3872