Cross-site scripting (XSS) vulnerability in the console in Puppet Enterprise before 2015.2.1 allows remote attackers to inject arbitrary web script or HTML via the string parameter, related to Login Redirect.
Metrics
Affected Vendors & Products
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
Link | Providers |
---|---|
https://puppet.com/security/cve/CVE-2015-6502 |
![]() ![]() |
History
No history.

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-06T07:22:22.201Z
Reserved: 2015-08-17T00:00:00
Link: CVE-2015-6502

No data.

Status : Deferred
Published: 2017-12-11T17:29:00.240
Modified: 2025-04-20T01:37:25.860
Link: CVE-2015-6502

No data.

No data.