Package impact
RubyGems / facter
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2014-3248 | medium | — | 6.2 | 9y ago | Untrusted search path vulnerability in Puppet Enterprise 2.8 before 2.8.7, Puppet before 2.7.26 and 3.x before 3.6.2, Facter 1.6.x and 2.x before 2.0.2, Hiera before 1.3.4, and Mcollective before 2.5… | |||
| CVE-2015-1426 | low | — | 2.1 | 12y ago | Puppet Labs Facter allows local users to obtain sensitive Amazon EC2 IAM instance metadata |