VulnerableCode Vulnerability Details

Search for vulnerabilities

System	Score	Found at
epss	0.01948	https://api.first.org/data/v1/epss?cve=CVE-2013-1640
epss	0.01948	https://api.first.org/data/v1/epss?cve=CVE-2013-1640
epss	0.01948	https://api.first.org/data/v1/epss?cve=CVE-2013-1640
epss	0.01948	https://api.first.org/data/v1/epss?cve=CVE-2013-1640
epss	0.01948	https://api.first.org/data/v1/epss?cve=CVE-2013-1640
epss	0.01948	https://api.first.org/data/v1/epss?cve=CVE-2013-1640
epss	0.01948	https://api.first.org/data/v1/epss?cve=CVE-2013-1640
epss	0.01948	https://api.first.org/data/v1/epss?cve=CVE-2013-1640
epss	0.01948	https://api.first.org/data/v1/epss?cve=CVE-2013-1640
cvssv2	9.0	https://nvd.nist.gov/vuln/detail/CVE-2013-1640

System

Score

Found at

epss

0.01948

https://api.first.org/data/v1/epss?cve=CVE-2013-1640

epss

0.01948

https://api.first.org/data/v1/epss?cve=CVE-2013-1640

epss

0.01948

https://api.first.org/data/v1/epss?cve=CVE-2013-1640

epss

0.01948

https://api.first.org/data/v1/epss?cve=CVE-2013-1640

epss

0.01948

https://api.first.org/data/v1/epss?cve=CVE-2013-1640

epss

0.01948

https://api.first.org/data/v1/epss?cve=CVE-2013-1640

epss

0.01948

https://api.first.org/data/v1/epss?cve=CVE-2013-1640

epss

0.01948

https://api.first.org/data/v1/epss?cve=CVE-2013-1640

epss

0.01948

https://api.first.org/data/v1/epss?cve=CVE-2013-1640

cvssv2

9.0

https://nvd.nist.gov/vuln/detail/CVE-2013-1640

Reference id	Reference type	URL
		http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00004.html
		http://lists.opensuse.org/opensuse-updates/2013-04/msg00056.html
		http://rhn.redhat.com/errata/RHSA-2013-0710.html
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1640.json
		https://api.first.org/data/v1/epss?cve=CVE-2013-1640
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1640
		http://secunia.com/advisories/52596
		https://puppetlabs.com/security/cve/cve-2013-1640/
		http://ubuntu.com/usn/usn-1759-1
		http://www.debian.org/security/2013/dsa-2643
919783		https://bugzilla.redhat.com/show_bug.cgi?id=919783
cpe:2.3:a:puppet:puppet::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:puppet:puppet::::::::
cpe:2.3:a:puppet:puppet:3.1.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:puppet:puppet:3.1.0:::::::*
cpe:2.3:a:puppet:puppet_enterprise::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:puppet:puppet_enterprise::::::::
cpe:2.3:a:puppet:puppet_enterprise:2.7.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:puppet:puppet_enterprise:2.7.0:::::::*
cpe:2.3:a:puppet:puppet_enterprise:2.7.1:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:puppet:puppet_enterprise:2.7.1:::::::*
cpe:2.3:o:canonical:ubuntu_linux:11.10:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:11.10:::::::*
cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::
cpe:2.3:o:canonical:ubuntu_linux:12.10:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.10:::::::*
CVE-2013-1640		https://nvd.nist.gov/vuln/detail/CVE-2013-1640
GLSA-201308-04		https://security.gentoo.org/glsa/201308-04
RHSA-2013:0710		https://access.redhat.com/errata/RHSA-2013:0710
USN-1759-1		https://usn.ubuntu.com/1759-1/

Reference id

Reference type

URL

http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00004.html

http://lists.opensuse.org/opensuse-updates/2013-04/msg00056.html

http://rhn.redhat.com/errata/RHSA-2013-0710.html

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1640.json

https://api.first.org/data/v1/epss?cve=CVE-2013-1640

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1640

http://secunia.com/advisories/52596

https://puppetlabs.com/security/cve/cve-2013-1640/

http://ubuntu.com/usn/usn-1759-1

http://www.debian.org/security/2013/dsa-2643

919783

https://bugzilla.redhat.com/show_bug.cgi?id=919783

cpe:2.3:a:puppet:puppet:*:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:puppet:puppet:*:*:*:*:*:*:*:*

cpe:2.3:a:puppet:puppet:3.1.0:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:puppet:puppet:3.1.0:*:*:*:*:*:*:*

cpe:2.3:a:puppet:puppet_enterprise:*:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:puppet:puppet_enterprise:*:*:*:*:*:*:*:*

cpe:2.3:a:puppet:puppet_enterprise:2.7.0:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:puppet:puppet_enterprise:2.7.0:*:*:*:*:*:*:*

cpe:2.3:a:puppet:puppet_enterprise:2.7.1:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:puppet:puppet_enterprise:2.7.1:*:*:*:*:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*

CVE-2013-1640

https://nvd.nist.gov/vuln/detail/CVE-2013-1640

GLSA-201308-04

https://security.gentoo.org/glsa/201308-04

RHSA-2013:0710

https://access.redhat.com/errata/RHSA-2013:0710

USN-1759-1

https://usn.ubuntu.com/1759-1/

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Exploitability (E)

Access Vector (AV)

Access Complexity (AC)

Authentication (Au)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

partial

complete

none

partial

complete

none

partial

complete

Date	Actor	Action	Source	VulnerableCode Version
2026-04-01T13:02:20.275946+00:00	Gentoo Importer	Import	https://security.gentoo.org/glsa/201308-04	38.0.0

2026-04-01T13:02:20.275946+00:00

Gentoo Importer

Import

https://security.gentoo.org/glsa/201308-04

38.0.0

Vulnerability ID	VCID-7jtp-a1nw-bqfs
Aliases	CVE-2013-1640
Summary	Multiple vulnerabilities have been found in Puppet, the worst of which could lead to execution of arbitrary code.
Status	Published
Exploitability	0.5
Weighted Severity	8.1
Risk	4.0
Affected and Fixed Packages	Package Details

Percentile	0.83389
EPSS Score	0.01948
Published At	April 1, 2026, 12:55 p.m.