VYPR

Hiera

by Puppet (software)

gem: hiera

CVEs (1)

  • CVE-2014-3248Nov 16, 2014
    risk 0.00cvss epss 0.01

    Untrusted search path vulnerability in Puppet Enterprise 2.8 before 2.8.7, Puppet before 2.7.26 and 3.x before 3.6.2, Facter 1.6.x and 2.x before 2.0.2, Hiera before 1.3.4, and Mcollective before 2.5.2, when running with Ruby 1.9.1 or earlier, allows local users to gain…