Unrated severityNVD Advisory· Published Jan 7, 2014· Updated Jun 16, 2026
CVE-2013-4969
CVE-2013-4969
Description
Puppet before 3.3.3 and 3.4 before 3.4.1 and Puppet Enterprise (PE) before 2.8.4 and 3.1 before 3.1.1 allows local users to overwrite arbitrary files via a symlink attack on unspecified files.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9- cpe:2.3:a:puppet:puppet_enterprise:*:*:*:*:*:*:*:*Range: >=2.0.0,<2.8.4
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*+ 3 more
- cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:13.04:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
5- puppetlabs.com/security/cve/cve-2013-4969nvdVendor Advisory
- secunia.com/advisories/56253nvdVendor Advisory
- secunia.com/advisories/56254nvdVendor Advisory
- www.debian.org/security/2013/dsa-2831nvdThird Party Advisory
- www.ubuntu.com/usn/USN-2077-1nvdThird Party Advisory
News mentions
0No linked articles in our index yet.