VYPR
Medium severity5.3NVD Advisory· Published Feb 8, 2017· Updated Jun 17, 2026

CVE-2016-9686

CVE-2016-9686

Description

The Puppet Communications Protocol (PCP) Broker incorrectly validates message header sizes. An attacker could use this to crash the PCP Broker, preventing commands from being sent to agents. This is resolved in Puppet Enterprise 2016.4.3 and 2016.5.2.

Affected products

5

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.