Vulnerability Description
Open redirect vulnerability in the Console in Puppet Enterprise 2015.x and 2016.x before 2016.4.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a // (slash slash) followed by a domain in the redirect parameter. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-6501.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Puppet | Puppet Enterprise | >= 2015.2.0, <= 2015.3.3 |
Related Weaknesses (CWE)
References
- http://hyp3rlinx.altervista.org/advisories/PUPPET-AUTHENTICATION-REDIRECT.txtExploitThird Party Advisory
- http://packetstormsecurity.com/files/139302/Puppet-Enterprise-Web-Interface-OpenExploitThird Party AdvisoryVDB Entry
- http://www.securityfocus.com/archive/1/539618/100/0/threaded
- http://www.securityfocus.com/bid/93846Third Party AdvisoryVDB Entry
- https://puppet.com/security/cve/cve-2016-5715Vendor Advisory
- http://hyp3rlinx.altervista.org/advisories/PUPPET-AUTHENTICATION-REDIRECT.txtExploitThird Party Advisory
- http://packetstormsecurity.com/files/139302/Puppet-Enterprise-Web-Interface-OpenExploitThird Party AdvisoryVDB Entry
- http://www.securityfocus.com/archive/1/539618/100/0/threaded
- http://www.securityfocus.com/bid/93846Third Party AdvisoryVDB Entry
- https://puppet.com/security/cve/cve-2016-5715Vendor Advisory
FAQ
What is CVE-2016-5715?
CVE-2016-5715 is a vulnerability with a CVSS score of 6.1 (MEDIUM). Open redirect vulnerability in the Console in Puppet Enterprise 2015.x and 2016.x before 2016.4.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a //...
How severe is CVE-2016-5715?
CVE-2016-5715 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-5715?
Check the references section above for vendor advisories and patch information. Affected products include: Puppet Puppet Enterprise.