CVE-2014-3250 - The default vhost configuration file in Puppet before 3.6.2 does not include the SSLCARevocationChec

CVE-2014-3250

Summary

The default vhost configuration file in Puppet before 3.6.2 does not include the SSLCARevocationCheck directive, which might allow remote attackers to obtain sensitive information via a revoked certificate when a Puppet master runs with Apache 2.4.

References

Vulnerable Configurations

cpe:2.3:a:puppet:puppet:0.1.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.1.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.2.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.2.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.2.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.2.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.2.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.2.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.2.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.2.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.2.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.2.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.3.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.3.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.3.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.3.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.3.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.3.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.9.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.9.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.9.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.9.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.9.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.9.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.9.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.9.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.9.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.9.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.10.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.10.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.10.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.10.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.10.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.10.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.11.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.11.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.11.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.11.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.11.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.11.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.12.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.12.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.14.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.14.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.14.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.14.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.15.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.15.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.15.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.15.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.15.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.15.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.16.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.16.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.16.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.16.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.16.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.16.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.16.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.16.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.16.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.16.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.16.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.16.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.17.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.17.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.17.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.17.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.17.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.17.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.18.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.18.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.18.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.18.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.18.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.18.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.18.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.18.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.18.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.18.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.19.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.19.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.19.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.19.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.19.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.19.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.20.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.20.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.20.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.20.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.22.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.22.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.22.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.22.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.22.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.22.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.22.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.22.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.22.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.22.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.23.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.23.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.23.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.23.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.23.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.23.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.7:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.7:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.8:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.8:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.9:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.9:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.1.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.1.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.7:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.7:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.7:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:1.2.7:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.4.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.4.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.5.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.5.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.5.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.5.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.5.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.5.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.5.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.5.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.6.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.6.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.6.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.6.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.6.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.6.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.7.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.7.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.7.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.7.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.7.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.7.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.8.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.8.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.8.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.8.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.8.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.8.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.8.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.8.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.9.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.9.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.9.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.9.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.9.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.9.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.9.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.9.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.7:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.7:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.8:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.8:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.9:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.9:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.10:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.10:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.11:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.11:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.12:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.12:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.13:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.13:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.14:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.14:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.7:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.7:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.8:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.8:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.9:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.9:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.10:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.10:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.11:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.11:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.12:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.12:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.13:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.13:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.14:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.14:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.15:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.15:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.16:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.16:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.17:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.17:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.18:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.18:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.7:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.7:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.8:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.8:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.9:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.9:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.10:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.10:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.11:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.11:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.12:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.12:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.13:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.13:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.14:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.14:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.15:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.15:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.15:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.15:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.15:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.15:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.15:rc4:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.15:rc4:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.16:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.16:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.16:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.16:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.17:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.17:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.18:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.18:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.19:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.19:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.19:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.19:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.19:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.19:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.19:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.19:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.20:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.20:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.20:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.20:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.21:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.21:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.22:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.22:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.23:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.23:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.26:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.26:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc4:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc4:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc5:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc5:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc6:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc6:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc7:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc7:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc8:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc8:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.1:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.0.1:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.0.1:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.1:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.2:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.2:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.2:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.2:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.2:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.2:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.1.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.1.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.1.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.1.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.1.0:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.1.0:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.1.0:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.1.0:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.1.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.1.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.1.1:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.1.1:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.1.2:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.1.2:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.1.3:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.1.3:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.2.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.2.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.2.0:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.0:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.0:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.0:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.1:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.2.1:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.2.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.2:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.2.2:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.2.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.3:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.2.3:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.2.3:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.3:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.4-1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.4-1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.3.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.3.0:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.0:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.0:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.0:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.1:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.3.1:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.3.1:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.1:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.1:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.1:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.1:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.1:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.2:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.3.2:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.4.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.4.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.4.0:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.4.0:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.4.0:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.4.0:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.4.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.4.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.4.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.4.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.4.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.4.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.5.0:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.5.0:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.5.0:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.5.0:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.5.0:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.5.0:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.5.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.5.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.5.1:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.5.1:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.6.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.6.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.6.0:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.6.0:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.6.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.6.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.4.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.4.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:linux:-:*:*:*:*:*:*:*
cpe:2.3:o:redhat:linux:-:*:*:*:*:*:*:*

CVSS

Base:	4.0 (as of 27-12-2017 - 16:31)
Impact:
Exploitability:

CWE

CWE-295

CAPEC

Creating a Rogue Certification Authority Certificate
An adversary exploits a weakness in the MD5 hash algorithm (weak collision resistance) to generate a certificate signing request (CSR) that contains collision blocks in the "to be signed" part. The adversary specially crafts two different, but valid X.509 certificates that when hashed with the MD5 algorithm would yield the same value. The adversary then sends the CSR for one of the certificates to the Certification Authority which uses the MD5 hashing algorithm. That request is completely valid and the Certificate Authority issues an X.509 certificate to the adversary which is signed with its private key. An adversary then takes that signed blob and inserts it into another X.509 certificate that the attacker generated. Due to the MD5 collision, both certificates, though different, hash to the same value and so the signed blob works just as well in the second certificate. The net effect is that the adversary's second X.509 certificate, which the Certification Authority has never seen, is now signed and validated by that Certification Authority. To make the attack more interesting, the second certificate could be not just a regular certificate, but rather itself a signing certificate. Thus the adversary is able to start their own Certification Authority that is anchored in its root of trust in the legitimate Certification Authority that has signed the attackers' first X.509 certificate. If the original Certificate Authority was accepted by default by browsers, so will now the Certificate Authority set up by the adversary and of course any certificates that it signs. So the adversary is now able to generate any SSL certificates to impersonate any web server, and the user's browser will not issue any warning to the victim. This can be used to compromise HTTPS communications and other types of systems where PKI and X.509 certificates may be used (e.g., VPN, IPSec).

Access

Vector	Complexity	Authentication
NETWORK	LOW	SINGLE

Impact

Confidentiality	Integrity	Availability
PARTIAL	NONE	NONE

cvss-vector via4

AV:N/AC:L/Au:S/C:P/I:N/A:N

refmap via4

confirm

Last major update

27-12-2017 - 16:31

Published

11-12-2017 - 17:29

Last modified

27-12-2017 - 16:31