Home

CVE-2014-3248

Description

Untrusted search path vulnerability in Puppet Enterprise 2.8 before 2.8.7, Puppet before 2.7.26 and 3.x before 3.6.2, Facter 1.6.x and 2.x before 2.0.2, Hiera before 1.3.4, and Mcollective before 2.5.2, when running with Ruby 1.9.1 or earlier, allows local users to gain privileges via a Trojan horse file in the current working directory, as demonstrated using (1) rubygems/defaults/operating_system.rb, (2) Win32API.rb, (3) Win32API.so, (4) safe_yaml.rb, (5) safe_yaml/deep.rb, or (6) safe_yaml/deep.so; or (7) operatingsystem.rb, (8) operatingsystem.so, (9) osfamily.rb, or (10) osfamily.so in puppet/confine.

Risk Information

Base Score
8.6
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N/E:P/RL:O/RC:C
EPSS Score
Exploitation Probability
0.164

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2014-3248 are fixed in Ruby-facter 1.7.6Windows
Vulnerabilities CVE-2014-3248 are fixed in Ruby-facter 2.0.2Windows
Vulnerabilities CVE-2014-3248 are fixed in Ruby-mcollective-client 2.5.2Windows
Vulnerabilities CVE-2014-3248 are fixed in Ruby-hiera 1.3.4Windows
Vulnerabilities CVE-2014-3248 are fixed in Ruby-puppet 2.7.26Windows
Vulnerabilities CVE-2014-3248 are fixed in Ruby-puppet 3.6.2Windows
Centralized configuration management (USN-3308-1) puppet-common_3.4.3-1ubuntu1.2_all.debLinux
Vulnerabilities CVE-2014-3248 are fixed in Ruby-facter for Linux 1.7.6Linux
Vulnerabilities CVE-2014-3248 are fixed in Ruby-facter for Linux 2.0.2Linux
Vulnerabilities CVE-2014-3248 are fixed in Ruby-mcollective-client for Linux 2.5.2Linux
Vulnerabilities CVE-2014-3248 are fixed in Ruby-hiera for Linux 1.3.4Linux
Vulnerabilities CVE-2014-3248 are fixed in Ruby-puppet for Linux 2.7.26Linux
Vulnerabilities CVE-2014-3248 are fixed in Ruby-puppet for Linux 3.6.2Linux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234