CVE-2014-3248
Description
Untrusted search path vulnerability in Puppet Enterprise 2.8 before 2.8.7, Puppet before 2.7.26 and 3.x before 3.6.2, Facter 1.6.x and 2.x before 2.0.2, Hiera before 1.3.4, and Mcollective before 2.5.2, when running with Ruby 1.9.1 or earlier, allows local users to gain privileges via a Trojan horse file in the current working directory, as demonstrated using (1) rubygems/defaults/operating_system.rb, (2) Win32API.rb, (3) Win32API.so, (4) safe_yaml.rb, (5) safe_yaml/deep.rb, or (6) safe_yaml/deep.so; or (7) operatingsystem.rb, (8) operatingsystem.so, (9) osfamily.rb, or (10) osfamily.so in puppet/confine.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
facterRubyGems | < 1.7.6 | 1.7.6 |
facterRubyGems | >= 2.0.0, < 2.0.2 | 2.0.2 |
hieraRubyGems | < 1.3.4 | 1.3.4 |
puppetRubyGems | < 2.7.26 | 2.7.26 |
puppetRubyGems | >= 3.0.0, < 3.6.2 | 3.6.2 |
mcollective-clientRubyGems | < 2.5.2 | 2.5.2 |
Affected products
19cpe:2.3:a:puppet:facter:2.0.0:rc1:*:*:*:*:*:*+ 9 more
- cpe:2.3:a:puppet:facter:2.0.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:puppet:facter:2.0.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:puppet:facter:2.0.0:rc3:*:*:*:*:*:*
- cpe:2.3:a:puppet:facter:2.0.0:rc4:*:*:*:*:*:*
- cpe:2.3:a:puppet:facter:2.0.1:-:*:*:*:*:*:*
- cpe:2.3:a:puppet:facter:2.0.1:rc1:*:*:*:*:*:*
- cpe:2.3:a:puppet:facter:2.0.1:rc2:*:*:*:*:*:*
- cpe:2.3:a:puppet:facter:2.0.1:rc3:*:*:*:*:*:*
- cpe:2.3:a:puppet:facter:2.0.1:rc4:*:*:*:*:*:*
- cpe:2.3:a:puppetlabs:facter:*:*:*:*:*:*:*:*range: >=1.6.0,<=1.6.18
- cpe:2.3:a:puppet:marionette_collective:*:*:*:*:*:*:*:*Range: <2.5.2
- cpe:2.3:a:puppet:puppet_enterprise:*:*:*:*:*:*:*:*Range: >=2.8.0,<2.8.7
- ghsa-coords5 versionspkg:gem/facterpkg:gem/hierapkg:gem/mcollective-clientpkg:gem/puppetpkg:rpm/opensuse/rubygem-facter&distro=openSUSE%20Tumbleweed
< 1.7.6+ 4 more
- (no CPE)range: < 1.7.6
- (no CPE)range: < 1.3.4
- (no CPE)range: < 2.5.2
- (no CPE)range: < 2.7.26
- (no CPE)range: < 1.3.4-3.5
Patches
Vulnerability mechanics
References
14- rowediness.com/2014/06/13/cve-2014-3248-a-little-problem-with-puppet/nvdExploitTechnical Description
- puppetlabs.com/security/cve/cve-2014-3248nvdVendor Advisory
- www.securityfocus.com/bid/68035nvdThird Party AdvisoryVDB Entry
- github.com/advisories/GHSA-92v7-pq4h-58j5ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2014-3248ghsaADVISORY
- secunia.com/advisories/59197nvdTechnical Description
- secunia.com/advisories/59200nvdTechnical Description
- github.com/rubysec/ruby-advisory-db/blob/master/gems/facter/CVE-2014-3248.ymlghsaWEB
- github.com/rubysec/ruby-advisory-db/blob/master/gems/hiera/CVE-2014-3248.ymlghsaWEB
- github.com/rubysec/ruby-advisory-db/blob/master/gems/mcollective-client/CVE-2014-3248.ymlghsaWEB
- github.com/rubysec/ruby-advisory-db/blob/master/gems/puppet/CVE-2014-3248.ymlghsaWEB
- web.archive.org/web/20141129061319/http://www.securityfocus.com/bid/68035ghsaWEB
- web.archive.org/web/20150204183209/http://rowediness.com/2014/06/13/cve-2014-3248-a-little-problem-with-puppetghsaWEB
- web.archive.org/web/20150907182402/http://puppetlabs.com/security/cve/cve-2014-3248ghsaWEB
News mentions
0No linked articles in our index yet.