Vulnerability Description
Directory traversal vulnerability in Puppet 2.6.x before 2.6.10 and 2.7.x before 2.7.4 allows remote attackers to write X.509 Certificate Signing Request (CSR) to arbitrary locations via (1) a double-encoded key parameter in the URI in 2.7.x, (2) the CN in the Subject of a CSR in 2.6 and 0.25.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Puppet | Puppet | 2.6.0 |
| Puppetlabs | Puppet | 2.7.0 |
Related Weaknesses (CWE)
References
- http://lists.opensuse.org/opensuse-updates/2011-10/msg00033.html
- http://secunia.com/advisories/46628Vendor Advisory
- http://www.debian.org/security/2011/dsa-2314
- http://www.ubuntu.com/usn/USN-1217-1
- https://groups.google.com/group/puppet-announce/browse_thread/thread/e57ce2740fePatch
- https://puppet.com/security/cve/cve-2011-3848
- http://lists.opensuse.org/opensuse-updates/2011-10/msg00033.html
- http://secunia.com/advisories/46628Vendor Advisory
- http://www.debian.org/security/2011/dsa-2314
- http://www.ubuntu.com/usn/USN-1217-1
- https://groups.google.com/group/puppet-announce/browse_thread/thread/e57ce2740fePatch
- https://puppet.com/security/cve/cve-2011-3848
FAQ
What is CVE-2011-3848?
CVE-2011-3848 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Directory traversal vulnerability in Puppet 2.6.x before 2.6.10 and 2.7.x before 2.7.4 allows remote attackers to write X.509 Certificate Signing Request (CSR) to arbitrary locations via (1) a double-...
How severe is CVE-2011-3848?
CVE-2011-3848 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-3848?
Check the references section above for vendor advisories and patch information. Affected products include: Puppet Puppet, Puppetlabs Puppet.