Known Vulnerabilities for Puppetlabs-mysql by Puppet
Listed below are 3 of the newest known vulnerabilities associated with "Puppetlabs-mysql" by "Puppet".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-3276 json | Command injection is possible in the puppetlabs-mysql module prior to version 13.0.0. A malicious actor is able to exploit th... | 8.8 - HIGH | 2022-10-07 | 2023-06-29 |
| CVE-2022-3275 json | Command injection is possible in the puppetlabs-apt module prior to version 9.0.0. A malicious actor is able to exploit this ... | 9.8 - CRITICAL | 2022-10-07 | 2023-11-07 |
| CVE-2015-7224 json | puppetlabs-mysql 3.1.0 through 3.6.0 allow remote attackers to bypass authentication by leveraging creation of a database acc... | 9.8 - CRITICAL | 2017-12-21 | 2018-01-09 |