VYPR
Medium severity6.6NVD Advisory· Published Jan 30, 2017· Updated Jun 17, 2026

CVE-2015-7331

CVE-2015-7331

Description

The mcollective-puppet-agent plugin before 1.11.1 for Puppet allows remote attackers to execute arbitrary code via vectors involving the --server argument.

Affected products

2
  • cpe:2.3:a:puppetlabs:mcollective-puppet-agent:*:*:*:*:*:puppet:*:*+ 1 more
    • cpe:2.3:a:puppetlabs:mcollective-puppet-agent:*:*:*:*:*:puppet:*:*range: <=1.11.0
    • (no CPE)range: <1.11.1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.