CVE-2013-2716 | Vulnerability Database | Aqua Security

Puppet Labs Puppet Enterprise before 2.8.0 does not use a randomized secret in the CAS client config file (cas_client_config.yml) when upgrading from older 1.2.x or 2.0.x versions, which allows remote attackers to obtain console access via a crafted cookie.

Affected Software

Name	Vendor	Start Version	End Version
Puppet_enterprise	Puppet	*	2.7.2 (including)
Puppet_enterprise	Puppet	2.0.0 (including)	2.0.0 (including)
Puppet_enterprise	Puppet	2.5.1 (including)	2.5.1 (including)
Puppet_enterprise	Puppet	2.5.2 (including)	2.5.2 (including)
Puppet	Puppetlabs	1.0.0 (including)	1.0.0 (including)
Puppet	Puppetlabs	1.1.0 (including)	1.1.0 (including)
Puppet	Puppetlabs	1.2.0 (including)	1.2.0 (including)
Puppet	Puppetlabs	2.5.0 (including)	2.5.0 (including)
Puppet	Puppetlabs	2.6.0 (including)	2.6.0 (including)

References

http://secunia.com/advisories/52862
https://exchange.xforce.ibmcloud.com/vulnerabilities/83171
https://puppetlabs.com/security/cve/cve-2013-2716/

NVD	https://nvd.nist.gov/vuln/detail/CVE-2013-2716
CWE	https://cwe.mitre.org/data/definitions/310.html