Marionette Collective Puppet Marionette Collective

Do you want an email whenever new security vulnerabilities are reported in Puppet Marionette Collective?

By the Year

In 2024 there have been 0 vulnerabilities in Puppet Marionette Collective . Marionette Collective did not have any published security vulnerabilities last year.

Year Vulnerabilities Average Score
2024 0 0.00
2023 0 0.00
2022 0 0.00
2021 0 0.00
2020 0 0.00
2019 1 9.80
2018 0 0.00

It may take a day or so for new Marionette Collective vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Puppet Marionette Collective Security Vulnerabilities

mcollective has a default password set at install

CVE-2014-0175 9.8 - Critical - December 13, 2019

mcollective has a default password set at install

Use of Hard-coded Credentials

MCollective 2.7.0 and 2.8.x before 2.8.9, as used in Puppet Enterprise

CVE-2016-2788 9.8 - Critical - February 13, 2017

MCollective 2.7.0 and 2.8.x before 2.8.9, as used in Puppet Enterprise, allows remote attackers to execute arbitrary code via vectors related to the mco ping command.

Authorization

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Puppet Enterprise or by Puppet? Click the Watch button to subscribe.

Puppet
Vendor

subscribe