Puppet Enterprise 2015.x < 2015.3.3 Multiple Vulnerabilities
High Nessus Plugin ID 129752
SynopsisA web application running on the remote host is affected by multiple vulnerabilities.
DescriptionAccording to its self-reported version number, the Puppet Enterprise application running on the remote host is version 2015.x prior to 2015.3.3. It is, therefore, affected by the following vulnerabilities :
- A invalid validation of the server certificate by the pxp-agent. An unauthenticated, remote attacker can impersonate a broker and issue commands to the agent. This requires a secondary attack which forces the agent to connect to the malicious broker.
- A denial of service vulnerability exists due to the incorrect validation of the broker node certificates. An unauthenticated, remote attacker can prevent the puppet communications protocol from triggering runs. (CVE-2016-2787)
SolutionUpgrade to Puppet Enterprise version 2015.3.3 or later.