Cross-site scripting (XSS) vulnerability in the console in Puppet Enterprise before 2015.2.1 allows remote attackers to inject arbitrary web script or HTML via the string parameter, related to Login Redirect.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://puppet.com/security/cve/CVE-2015-6502 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2017-12-11T17:00:00
Updated: 2024-08-06T07:22:22.201Z
Reserved: 2015-08-17T00:00:00
Link: CVE-2015-6502
Vulnrichment
No data.
NVD
Status : Modified
Published: 2017-12-11T17:29:00.240
Modified: 2024-11-21T02:35:05.773
Link: CVE-2015-6502
Redhat
No data.