Vulnerability CVE-2013-1640

Vulnerability Name:

CVE-2013-1640 (CCN-82753)

Assigned:

2013-03-12

Published:

2013-03-12

Updated:

2022-01-24

Summary:

The (1) template and (2) inline_template functions in the master server in Puppet before 2.6.18, 2.7.x before 2.7.21, and 3.1.x before 3.1.1, and Puppet Enterprise before 1.2.7 and 2.7.x before 2.7.2 allows remote authenticated users to execute arbitrary code via a crafted catalog request.

CVSS v3 Severity:

5.5 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

9.0 High (CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C)
6.7 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

6.5 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P)
4.8 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-noinfo

Vulnerability Consequences:

Gain Privileges

References:

Source: MITRE
Type: CNA
CVE-2013-1640

Source: SUSE
Type: Third Party Advisory
SUSE-SU-2013:0618

Source: SUSE
Type: Third Party Advisory
openSUSE-SU-2013:0641

Source: REDHAT
Type: Third Party Advisory
RHSA-2013:0710

Source: CCN
Type: SA52596
Puppet Multiple Vulnerabilities

Source: SECUNIA
Type: Third Party Advisory
52596

Source: UBUNTU
Type: Third Party Advisory
USN-1759-1

Source: DEBIAN
Type: Third Party Advisory
DSA-2643

Source: DEBIAN
Type: DSA-2643
puppet -- several vulnerabilities

Source: CCN
Type: BID-58452
Puppet CVE-2013-1640 Remote Code Execution Vulnerability

Source: XF
Type: UNKNOWN
puppet-catalog-code-exec(82753)

Source: CCN
Type: Puppet Labs Web Site
Security Updates: New Releases of Puppet and Puppet Enterprise

Source: CONFIRM
Type: Vendor Advisory
https://puppetlabs.com/security/cve/cve-2013-1640/

Vulnerable Configuration:

Configuration 1:

cpe:/a:puppet:puppet:*:*:*:*:*:*:*:* (Version < 2.6.18)

Configuration 2:

cpe:/a:puppet:puppet:*:*:*:*:*:*:*:* (Version >= 2.7.0 and < 2.7.21)

Configuration 3:

cpe:/a:puppet:puppet:3.1.0:*:*:*:*:*:*:*

Configuration 4:

cpe:/a:puppet:puppet_enterprise:*:*:*:*:*:*:*:* (Version < 1.2.7)

Configuration 5:

cpe:/a:puppet:puppet_enterprise:2.7.0:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet_enterprise:2.7.1:*:*:*:*:*:*:*

Configuration 6:

cpe:/o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*

OR cpe:/o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:puppet:puppet:2.7.0:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet_enterprise:1.2.0:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20131640	V	CVE-2013-1640	2022-05-20
oval:org.mitre.oval:def:25947	P	SUSE-SU-2013:0618-1 -- Security update for puppet	2014-09-08
oval:org.mitre.oval:def:17328	P	USN-1759-1 -- puppet vulnerabilities	2014-07-21
oval:org.mitre.oval:def:17992	P	DSA-2643-1 puppet - several issues	2014-06-23
oval:com.ubuntu.precise:def:20131640000	V	CVE-2013-1640 on Ubuntu 12.04 LTS (precise) - high.	2013-03-20

BACK