CVE-2013-1655 — Vulnetix

Try Vulnetix Request Demo

CVE-2013-1655 PUBLISHED CVSS 7.5 HIGH

Puppet Improper Input Validation vulnerability

EPSS 0.63% · 70.2th percentile

Risk Scores

CVSS v2.0

7.5

EPSS Score

0.63%

70.2th percentile

Affected Products

Vendor	Product	Versions
puppetlabs	puppet	2.7.20, 2.7.20, 2.7.0
puppet	puppet	2.7.6, 2.7.7, 2.7.8
n/a	n/a	n/a
RubyGems	puppet	2.7.0, 3.1.0
puppet	puppet_enterprise	3.1.0

Timeline

Mar 20, 2013 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
Jul 10, 2023 EPSS Score
Aug 31, 2023 EPSS Score

References

58442 vdb
SUSE-SU-2013:0618 vendor-advisory
DSA-2643 vendor-advisory
52596 third-party-advisory
https://puppetlabs.com/security/cve/cve-2013-1655/ url
USN-1759-1 vendor-advisory
openSUSE-SU-2013:0641 vendor-advisory
https://nvd.nist.gov/vuln/detail/CVE-2013-1655 advisory
https://github.com/puppetlabs/puppet package
https://github.com/rubysec/ruby-advisory-db/blob/master/gems/puppet/CVE-2013-1655.yml url
https://puppetlabs.com/security/cve/cve-2013-1655 url
https://web.archive.org/web/20200228144801/http://www.securityfocus.com/bid/58442 url
https://www.puppet.com/security/cve/cve-2013-1655-unauthenticated-remote-code-execution-vulnerability url

Open in Interactive Console →