Puppet Marionette Collective
By the Year
In 2024 there have been 0 vulnerabilities in Puppet Marionette Collective . Marionette Collective did not have any published security vulnerabilities last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 0 | 0.00 |
2023 | 0 | 0.00 |
2022 | 0 | 0.00 |
2021 | 0 | 0.00 |
2020 | 0 | 0.00 |
2019 | 1 | 9.80 |
2018 | 0 | 0.00 |
It may take a day or so for new Marionette Collective vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Puppet Marionette Collective Security Vulnerabilities
mcollective has a default password set at install
CVE-2014-0175
9.8 - Critical
- December 13, 2019
mcollective has a default password set at install
Use of Hard-coded Credentials
MCollective 2.7.0 and 2.8.x before 2.8.9, as used in Puppet Enterprise
CVE-2016-2788
9.8 - Critical
- February 13, 2017
MCollective 2.7.0 and 2.8.x before 2.8.9, as used in Puppet Enterprise, allows remote attackers to execute arbitrary code via vectors related to the mco ping command.
Authorization
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Puppet Enterprise or by Puppet? Click the Watch button to subscribe.