CVE-2015-1426
2.1
Vector
AV:L/AC:L/Au:N/C:P/I:N/A:N
Exploitability: 3.9 / Impact: 2.9
Source: NVD
Description
Puppet Labs Facter 1.6.0 through 2.4.0 allows local users to obtains sensitive Amazon EC2 IAM instance metadata by reading a fact for an Amazon EC2 node.
Affected (70)
Products: Puppet: Facter · Puppetlabs: Facter
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version 1.6.0 | |
| Version 1.6.10 |
References (2)
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.