CVE-2012-1988

Puppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13, and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x, 2.0.x, and 2.5.x before 2.5.1 allows remote authenticated users with agent SSL keys and file-creation permissions on the puppet master to execute arbitrary commands by creating a file whose full pathname contains shell metacharacters, then performing a filebucket request.

Published: May 29, 2012
Updated: Apr 13, 2023
CVE: CVE-2012-1988
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6
AV:N/AC:M/Au:S/C:P/I:P/A:P

CWEs:

OWASP TOP 10:

A1 - Injection

Affected Software
References

Software	From	Fixed in
puppet / puppet	2.7.0	2.7.13
puppet / puppet	2.6.0	2.6.15
puppet / puppet_enterprise	1.0	1.0.x
puppet / puppet_enterprise	1.1	1.1.x
puppet / puppet_enterprise	1.2.0	2.5.1
fedoraproject / fedora	17	17.x
fedoraproject / fedora	16	16.x
fedoraproject / fedora	15	15.x
debian / debian_linux	7.0	7.0.x
debian / debian_linux	6.0	6.0.x
canonical / ubuntu_linux	11.04	11.04.x
canonical / ubuntu_linux	11.10	11.10.x
canonical / ubuntu_linux	10.04	10.04.x

Vulnerability Database

289,697

CVE-2012-1988