← Back to CVEs
CVE-2022-0675
MEDIUM5.6
Description
In certain situations it is possible for an unmanaged rule to exist on the target system that has the same comment as the rule specified in the manifest. This could allow for unmanaged rules to exist on the target system and leave the system in an unsafe state.
CVE Details
CVSS v3.1 Score5.6
SeverityMEDIUM
CVSS VectorCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
Attack VectorNETWORK
ComplexityHIGH
Privileges RequiredNONE
User InteractionNONE
Published3/2/2022
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
puppet:firewall
Weaknesses (CWE)
CWE-1289CWE-20
References
https://puppet.com/security/cve/CVE-2022-0675(security@puppet.com)
https://puppet.com/security/cve/CVE-2022-0675(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.