Puppet - Puppetlabs-mysql CVE

Filtered by vendor Puppet Subscribe

Filtered by product Puppetlabs-mysql

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2015-7224	1 Puppet	1 Puppetlabs-mysql	2018-01-09	7.5 HIGH	9.8 CRITICAL
puppetlabs-mysql 3.1.0 through 3.6.0 allow remote attackers to bypass authentication by leveraging creation of a database account without a password when a 'mysql_user' user parameter contains a host with a netmask.

Vulnerabilities (CVE)