VYPR
Get started
← All advisories
High severity8.8NVD Advisory· Published Aug 9, 2017· Updated May 13, 2026

CVE-2016-5716

CVE-2016-5716

Description

The console in Puppet Enterprise 2015.x and 2016.x prior to 2016.4.0 includes unsafe string reads that potentially allows for remote code execution on the console node.

Affected products

13
  • Puppet (software)/Puppet Enterprise12 versions
    cpe:2.3:a:puppet:puppet_enterprise:2015.2.0:*:*:*:*:*:*:*+ 11 more
    • cpe:2.3:a:puppet:puppet_enterprise:2015.2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:puppet:puppet_enterprise:2015.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:puppet:puppet_enterprise:2015.2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:puppet:puppet_enterprise:2015.2.3:*:*:*:*:*:*:*
    • cpe:2.3:a:puppet:puppet_enterprise:2015.3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:puppet:puppet_enterprise:2015.3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:puppet:puppet_enterprise:2015.3.2:*:*:*:*:*:*:*
    • cpe:2.3:a:puppet:puppet_enterprise:2015.3.3:*:*:*:*:*:*:*
    • cpe:2.3:a:puppet:puppet_enterprise:2016.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:puppet:puppet_enterprise:2016.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:puppet:puppet_enterprise:2016.2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:puppet:puppet_enterprise:2016.2.1:*:*:*:*:*:*:*
  • Puppet/Puppet Enterprisev5
    Range: PE < 2016.4.0

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.