Lucene search
China National Vulnerability DatabaseCNVD-2022-87385HistoryOct 11, 2022 - 12:00 a.m.
Puppet puppetlabs-apt module command injection vulnerability
2022-10-1100:00:00
China National Vulnerability Database
www.cnvd.org.cn
17
puppet
puppetlabs-apt
command injection
vulnerability
configuration management
arbitrary command execution
puppet labs
EPSS
0.004
Percentile
73.2%
Puppet is a client/server (C/S) architecture-based configuration management tool from Puppet Labs that can be used to manage configuration files, users, cron tasks, packages, system services, etc. A command injection vulnerability exists in versions of Puppet Puppetlabs-apt module prior to 9.0.0. The vulnerability stems from a failure of the puppetlabs-apt module to properly filter constructed command special characters, commands, etc. An attacker could exploit the vulnerability to cause arbitrary command execution.
Related
osv
osv
CVE-2022-3275
2022-10-07 21:15:11
debiancve
debiancve
CVE-2022-3275
2022-10-07 21:15:11
ubuntucve
ubuntucve
CVE-2022-3275
2022-10-07 00:00:00
redhatcve
redhatcve
CVE-2022-3275
2022-12-13 04:34:46
veracode
veracode
Command Injection
2023-02-27 14:34:43
prion
prion
Command injection
2022-10-07 21:15:00
cve
cve
CVE-2022-3275
2022-10-07 21:15:11
nvd
nvd
CVE-2022-3275
2022-10-07 21:15:11
cvelist
cvelist
CVE-2022-3275 Puppetlabs-apt Command Injection
2022-10-07 00:00:00
nessus
nessus
Wireshark 3.6.x < 3.6.9 Multiple Vulnerabilities (macOS)
2022-10-27 00:00:00
Wireshark 3.6.x < 3.6.9 Multiple Vulnerabilities
2022-10-27 00:00:00
Fedora 36 : 1:wireshark (2022-1f2fbb087e)
2022-12-23 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: wireshark-4.0.2-1.fc37
2022-12-17 01:48:44
[SECURITY] Fedora 36 Update: wireshark-3.6.10-1.fc36
2022-12-17 01:34:59
openvas
openvas
Fedora: Security Advisory for wireshark (FEDORA-2022-1f2fbb087e)
2022-12-17 00:00:00
Fedora: Security Advisory for wireshark (FEDORA-2022-9d4aa8a486)
2022-12-17 00:00:00
kaspersky
kaspersky
KLA20110 Multiple vulnerabilities in Wireshark
2022-10-26 00:00:00