Medium severity6.6NVD Advisory· Published Jan 30, 2017· Updated Jun 17, 2026
CVE-2015-7331
CVE-2015-7331
Description
The mcollective-puppet-agent plugin before 1.11.1 for Puppet allows remote attackers to execute arbitrary code via vectors involving the --server argument.
Affected products
2cpe:2.3:a:puppetlabs:mcollective-puppet-agent:*:*:*:*:*:puppet:*:*+ 1 more
- cpe:2.3:a:puppetlabs:mcollective-puppet-agent:*:*:*:*:*:puppet:*:*range: <=1.11.0
- (no CPE)range: <1.11.1
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/92432nvdThird Party AdvisoryVDB Entry
- puppet.com/security/cve/cve-2015-7331nvdVendor Advisory
News mentions
0No linked articles in our index yet.