CVE-2016-5716

Summary

The console in Puppet Enterprise 2015.x and 2016.x prior to 2016.4.0 includes unsafe string reads that potentially allows for remote code execution on the console node.

Affected Software

VendorProductVersion RangeStatus
PuppetPuppet EnterprisePE < 2016.4.0affected

Weaknesses

  • RCE

ADP Enrichment

CVE Program Container

Additional References

References