Approved changes feed: RSS · Atom
cpe:2.3:a:puppet:puppet:0.25.0:rc1:*:*:*:*:*:*
part: a version: 0.25.0 update: rc1
| Vendor | Puppet (056a1ba3-12b3-5ecf-a97f-ab3b403c7816) |
|---|---|
| Product | Puppet (7d8fb82a-9b62-59b4-94cc-efb68e8fe2b8) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:deb/debian/puppet |
purl2cpe | 2026-06-01 10:14:36.999717 |
pkg:deb/ubuntu/puppet |
purl2cpe | 2026-06-01 10:14:36.999718 |
pkg:github/puppetlabs/puppet |
purl2cpe | 2026-06-01 10:14:36.999720 |
pkg:puppet/open-source-puppet |
purl2cpe | 2026-06-01 10:14:36.999721 |
pkg:rpm/fedora/puppet |
purl2cpe | 2026-06-01 10:14:36.999722 |
pkg:rpm/opensuse/puppet |
purl2cpe | 2026-06-01 10:14:36.999724 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2010-0156 |
vulnerable | 2026-06-03 14:30:02.363960 |
Details available
Puppet 0.24.x before 0.24.9 and 0.25.x before 0.25.2 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/daemonout, (2) /tmp/puppetdoc.txt, (3) /tmp/puppetdoc.tex, or (4) /tmp/puppetdoc.aux temporary file.
Published: 2010-03-03T19:00:00.000Z
Updated: 2024-08-07T00:37:54.102Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.