CVE-2017-2298

Summary

The mcollective-sshkey-security plugin before 0.5.1 for Puppet uses a server-specified identifier as part of a path where a file is written. A compromised server could use this to write a file to an arbitrary location on the client with the filename appended with the string "_pub.pem".

Affected Software

VendorProductVersion RangeStatus
Puppetmcollective< 0.5.1affected

Weaknesses

  • missing input sanitization

ADP Enrichment

CVE Program Container

Additional References

References