CVE-2012-3866 — Puppet allows local users to obtain sensitive configuration information

Description

lib/puppet/defaults.rb in Puppet 2.7.x before 2.7.18, and Puppet Enterprise before 2.5.2, uses 0644 permissions for last_run_report.yaml, which allows local users to obtain sensitive configuration information by leveraging access to the puppet master server to read this file.

How to fix CVE-2012-3866

To remediate CVE-2012-3866, upgrade the affected package to a fixed version below.

Debian/puppet—upgrade to 2.7.18-1 or later
RubyGems/puppet—upgrade to 2.7.18 or later

Is CVE-2012-3866 being exploited?

Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.

Affected packages (2)

from 0, < 2.7.18-1
>= 2.7.0, < 2.7.18

References (11)

ADVISORYnvd.nist.gov/vuln/detail/CVE-2012-3866
ADVISORYsecurity-tracker.debian.org/tracker/CVE-2012-3866
PATCHgithub.com/puppetlabs/puppet
WEBlists.opensuse.org/opensuse-updates/2012-07/msg00036.html
WEB