Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:gem/puppet@2.7
purl pkg:gem/puppet@2.7
Tags Ghost
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 3.1
Vulnerabilities affecting this package (9)
Vulnerability Summary Fixed by
VCID-2jc8-n1j4-m7c6
Aliases:
CVE-2012-1053
GHSA-77hg-g8cc-5r37
Puppet Privilege Escallation The change_user method in the SUIDManager (lib/puppet/util/suidmanager.rb) in Puppet 2.6.x before 2.6.14 and 2.7.x before 2.7.11, and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x, 2.0.x before 2.0.3 does not properly manage group privileges, which allows local users to gain privileges via vectors related to (1) the change_user not dropping supplementary groups in certain conditions, (2) changes to the eguid without associated changes to the egid, or (3) the addition of the real gid to supplementary groups.
2.7.11
Affected by 19 other vulnerabilities.
VCID-75gs-2gu3-6udx
Aliases:
CVE-2012-3865
GHSA-g89m-3wjw-h857
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Directory traversal vulnerability in lib/puppet/reports/store.rb in Puppet before 2.6.17 and 2.7.x before 2.7.18, and Puppet Enterprise before 2.5.2, when Delete is enabled in auth.conf, allows remote authenticated users to delete arbitrary files on the puppet master server via a .. (dot dot) in a node name.
2.7.18
Affected by 16 other vulnerabilities.
VCID-a7cn-eqbq-qyb1
Aliases:
CVE-2011-3871
GHSA-mpmx-gm5v-q789
Puppet uses predictable filenames, allowing arbitrary file overwrite Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x, when running in --edit mode, uses a predictable file name, which allows local users to run arbitrary Puppet code or trick a user into editing arbitrary files.
2.7.5
Affected by 21 other vulnerabilities.
VCID-h88b-abes-3bgr
Aliases:
CVE-2012-1987
GHSA-v58w-6xc2-w799
Puppet Denial of Service and Arbitrary File Write Unspecified vulnerability in Puppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13, and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x, 2.0.x, and 2.5.x before 2.5.1 allows remote authenticated users with agent SSL keys to (1) cause a denial of service (memory consumption) via a REST request to a stream that triggers a thread block, as demonstrated using CVE-2012-1986 and /dev/random; or (2) cause a denial of service (filesystem consumption) via crafted REST requests that use "a marshaled form of a Puppet::FileBucket::File object" to write to arbitrary file locations.
2.7.13
Affected by 19 other vulnerabilities.
VCID-jhkk-5euf-uked
Aliases:
CVE-2011-3869
GHSA-8c56-v25w-f89c
Improper Link Resolution Before File Access ('Link Following') Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x allows local users to overwrite arbitrary files via a symlink attack on the .k5login file.
2.7.5
Affected by 21 other vulnerabilities.
VCID-kt2h-k72f-tqc7
Aliases:
CVE-2012-1988
GHSA-6xxq-j39w-g3f6
Improper Neutralization of Special Elements used in a Command ('Command Injection') Puppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13, and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x, 2.0.x, and 2.5.x before 2.5.1 allows remote authenticated users with agent SSL keys and file-creation permissions on the puppet master to execute arbitrary commands by creating a file whose full pathname contains shell metacharacters, then performing a filebucket request.
2.7.13
Affected by 19 other vulnerabilities.
VCID-tetf-xa1u-uffv
Aliases:
CVE-2012-1906
GHSA-c4mc-49hq-q275
Puppet uses predictable filenames, allowing arbitrary file overwrite Puppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13, and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x, 2.0.x, and 2.5.x before 2.5.1 uses predictable file names when installing Mac OS X packages from a remote source, which allows local users to overwrite arbitrary files or install arbitrary packages via a symlink attack on a temporary file in /tmp.
2.7.13
Affected by 19 other vulnerabilities.
VCID-txx3-3fzg-33cp
Aliases:
CVE-2011-3870
GHSA-qh3g-27jf-3j54
Improper Link Resolution Before File Access ('Link Following') Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x allows local users to modify the permissions of arbitrary files via a symlink attack on the SSH authorized_keys file.
2.7.5
Affected by 21 other vulnerabilities.
VCID-wage-71h9-6qay
Aliases:
CVE-2012-3867
GHSA-q44r-f2hm-v76v
Moderate severity vulnerability that affects puppet lib/puppet/ssl/certificate_authority.rb in Puppet before 2.6.17 and 2.7.x before 2.7.18, and Puppet Enterprise before 2.5.2, does not properly restrict the characters in the Common Name field of a Certificate Signing Request (CSR), which makes it easier for user-assisted remote attackers to trick administrators into signing a crafted agent certificate via ANSI control sequences.
2.7.18
Affected by 16 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-04T14:30:09.307016+00:00 GHSA Importer Affected by VCID-tetf-xa1u-uffv https://github.com/advisories/GHSA-c4mc-49hq-q275 38.1.0
2026-04-04T14:30:09.224178+00:00 GHSA Importer Affected by VCID-2jc8-n1j4-m7c6 https://github.com/advisories/GHSA-77hg-g8cc-5r37 38.1.0
2026-04-01T15:18:22.872622+00:00 Ruby Importer Affected by VCID-jhkk-5euf-uked https://github.com/rubysec/ruby-advisory-db/blob/master/gems/puppet/CVE-2011-3869.yml 38.0.0
2026-04-01T15:18:22.852635+00:00 Ruby Importer Affected by VCID-wage-71h9-6qay https://github.com/rubysec/ruby-advisory-db/blob/master/gems/puppet/CVE-2012-3867.yml 38.0.0
2026-04-01T15:18:22.743002+00:00 Ruby Importer Affected by VCID-a7cn-eqbq-qyb1 https://github.com/rubysec/ruby-advisory-db/blob/master/gems/puppet/CVE-2011-3871.yml 38.0.0
2026-04-01T15:18:22.714971+00:00 Ruby Importer Affected by VCID-tetf-xa1u-uffv https://github.com/rubysec/ruby-advisory-db/blob/master/gems/puppet/CVE-2012-1906.yml 38.0.0
2026-04-01T15:18:22.626310+00:00 Ruby Importer Affected by VCID-75gs-2gu3-6udx https://github.com/rubysec/ruby-advisory-db/blob/master/gems/puppet/CVE-2012-3865.yml 38.0.0
2026-04-01T15:18:22.522979+00:00 Ruby Importer Affected by VCID-txx3-3fzg-33cp https://github.com/rubysec/ruby-advisory-db/blob/master/gems/puppet/CVE-2011-3870.yml 38.0.0
2026-04-01T15:18:22.494995+00:00 Ruby Importer Affected by VCID-h88b-abes-3bgr https://github.com/rubysec/ruby-advisory-db/blob/master/gems/puppet/CVE-2012-1987.yml 38.0.0
2026-04-01T15:18:22.465611+00:00 Ruby Importer Affected by VCID-2jc8-n1j4-m7c6 https://github.com/rubysec/ruby-advisory-db/blob/master/gems/puppet/CVE-2012-1053.yml 38.0.0
2026-04-01T15:18:22.436941+00:00 Ruby Importer Affected by VCID-kt2h-k72f-tqc7 https://github.com/rubysec/ruby-advisory-db/blob/master/gems/puppet/CVE-2012-1988.yml 38.0.0
2026-04-01T12:50:40.179098+00:00 GitLab Importer Affected by VCID-2jc8-n1j4-m7c6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/puppet/CVE-2012-1053.yml 38.0.0
2026-04-01T12:50:38.798206+00:00 GitLab Importer Affected by VCID-a7cn-eqbq-qyb1 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/puppet/CVE-2011-3871.yml 38.0.0
2026-04-01T12:50:36.286746+00:00 GitLab Importer Affected by VCID-jhkk-5euf-uked https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/puppet/CVE-2011-3869.yml 38.0.0
2026-04-01T12:50:30.385596+00:00 GitLab Importer Affected by VCID-txx3-3fzg-33cp https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/puppet/CVE-2011-3870.yml 38.0.0
2026-04-01T12:50:27.734245+00:00 GitLab Importer Affected by VCID-tetf-xa1u-uffv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/puppet/CVE-2012-1906.yml 38.0.0