CVE-2011-3848

Puppet <2.6.10-2.7.4 - Path Traversal

Title source: llm
STIX 2.1

Description

Directory traversal vulnerability in Puppet 2.6.x before 2.6.10 and 2.7.x before 2.7.4 allows remote attackers to write X.509 Certificate Signing Request (CSR) to arbitrary locations via (1) a double-encoded key parameter in the URI in 2.7.x, (2) the CN in the Subject of a CSR in 2.6 and 0.25.

References (6)

Core 6
Core References
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2011/dsa-2314
Mailing List vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-updates/2011-10/msg00033.html
Various Sources x_refsource_confirm
https://puppet.com/security/cve/cve-2011-3848
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-1217-1
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/46628

Scores

EPSS 0.0112
EPSS Percentile 62.1%

Details

CWE
CWE-22
Status published
Products (14)
puppet/puppet 2.6.0
puppet/puppet 2.6.1
puppet/puppet 2.6.2
puppet/puppet 2.6.3
puppet/puppet 2.6.4
puppet/puppet 2.6.5
puppet/puppet 2.6.6
puppet/puppet 2.6.7
puppet/puppet 2.6.8
puppet/puppet 2.6.9
... and 4 more
Published Oct 27, 2011
Tracked Since Feb 18, 2026