PT-2017-15333 · Puppet+2 · Puppet+2

Published

2017-05-25

Updated

2021-03-15

CVE-2017-2295

CVSS v3.1

8.2

High

Vector

AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions Puppet versions prior to 4.10.1

Description The issue allows an attacker to force YAML deserialization in an unsafe manner, potentially leading to remote code execution. This is due to the deserialization of data from the agent to the server without proper format constraints.

Recommendations For versions prior to 4.10.1, update to version 4.10.1 or later to constrain the format of data on the wire to PSON or safely decoded YAML, preventing unsafe YAML deserialization.

Fix

RCE

Deserialization of Untrusted Data

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-502

Related Identifiers

CVE-2017-2295

DLA-1012-1

DSA-3862-1

MGASA-2017-0156

OPENSUSE-SU-2017_1948-1

RHSA-2018:0336

SUSE-SU-2017:2113-1

SUSE-SU-2017_2113-1

SUSE-SU-2018:0600-1

SUSE-SU-2018_0600-1

USN-3308-1

USN-4804-1

Affected Products

Puppet

Suse

Ubuntu

PT-2017-15333 · Puppet+2 · Puppet+2

CVE-2017-2295

Weakness Enumeration

Related Identifiers

Affected Products

References · 41