VYPR
Critical severityNVD Advisory· Published Oct 6, 2023· Updated Sep 19, 2024

CVE-2023-5214 - Privilege Escalation in Puppet Bolt

CVE-2023-5214

Description

In Puppet Bolt versions prior to 3.27.4, a path to escalate privileges was identified.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
boltRubyGems
< 3.27.43.27.4

Affected products

2
  • ghsa-coords
    Range: < 3.27.4
  • Puppet/Boltv5
    Range: prior to 3.27.4

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.