Unrated severityNVD Advisory· Published Mar 9, 2014· Updated May 6, 2026
CVE-2013-4966
CVE-2013-4966
Description
The master external node classification script in Puppet Enterprise before 3.2.0 does not verify the identity of consoles, which allows remote attackers to create arbitrary classifications on the master by spoofing a console.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- puppetlabs.com/security/cve/cve-2013-4966nvdVendor Advisory
- www.securitytracker.com/id/1029873nvd
News mentions
0No linked articles in our index yet.