CVE-2013-4957

Overview

CVE-2013-4957 (Puppet Dashboard Report YAML Handling Vulnerability)

  • Posted October 15, 2013

  • Assessed Risk Level: Medium

Systems that rely on YAML to create report-specific types were found to be at risk of arbitrary code execution vulnerabilities.

Status

  • Resolved in Puppet Enterprise 3.1.0