CVE-2018-11749

When users are configured to use startTLS with RBAC LDAP, at login time, the user's credentials are sent via plaintext to the LDAP server. This affects Puppet Enterprise 2018.1.3, 2017.3.9, and 2016.4.14, and is fixed in Puppet Enterprise 2018.1.4, 2017.3.10, and 2016.4.15. It scored an 8.5 CVSS score.

Published: Aug 24, 2018
Updated: Apr 13, 2023
CVE: CVE-2018-11749
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

CWEs:

CWE-319

OWASP TOP 10:

A3 - Sensitive Data Exposure

Affected Software
References

Software	From	Fixed in
puppet / puppet_enterprise	-	2016.4.14.x
puppet / puppet_enterprise	2017.3.0	2017.3.9.x
puppet / puppet_enterprise	2018.1.0	2018.1.3.x

https://puppet.com/security/cve/cve-2018-11749

Vulnerability Database

289,689

CVE-2018-11749