CVE-2018-6508 -- puppet-module-puppetlabs-apacheID: oval:org.secpod.oval:def:2001412 | Date: (C)2019-04-22 (M)2022-01-24 |
Class: VULNERABILITY | Family: unix |
Puppet Enterprise 2017.3.x prior to 2017.3.3 are vulnerable to a remote execution bug when a specially crafted string was passed into the facter_task or puppet_conf tasks. This vulnerability only affects tasks in the affected modules, if you are not using puppet tasks you are not affected by this vulnerability.
Platform: |
Debian 8.x |
Debian 9.x |
Product: |
puppet-module-puppetlabs-apache |
puppet-module-puppetlabs-apt |
puppet-module-puppetlabs-mysql |