{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2022-3276", "assignerOrgId": "ca2a266c-be2f-4d4b-92d0-47b76b1a9c4e", "assignerShortName": "puppet", "dateUpdated": "2024-08-03T01:07:05.971Z", "dateReserved": "2022-09-22T00:00:00", "datePublished": "2022-10-07T00:00:00"}, "containers": {"cna": {"title": "Puppetlabs-mysql Command Injection", "providerMetadata": {"orgId": "ca2a266c-be2f-4d4b-92d0-47b76b1a9c4e", "shortName": "puppet", "dateUpdated": "2022-10-07T00:00:00"}, "descriptions": [{"lang": "en", "value": "Command injection is possible in the puppetlabs-mysql module prior to version 13.0.0. A malicious actor is able to exploit this vulnerability only if they are able to provide unsanitized input to the module. This condition is rare in most deployments of Puppet and Puppet Enterprise."}], "affected": [{"vendor": "Puppet", "product": "puppetlabs-mysql", "versions": [{"version": "unspecified", "lessThan": "13.0.0", "status": "affected", "versionType": "custom"}]}], "references": [{"url": "https://puppet.com/security/cve/CVE-2022-3276"}], "credits": [{"lang": "en", "value": "Tam\u00e1s Koczka and the Google Security Team"}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "attackVector": "ADJACENT_NETWORK", "attackComplexity": "LOW", "privilegesRequired": "HIGH", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 8.4, "baseSeverity": "HIGH"}}], "problemTypes": [{"descriptions": [{"type": "CWE", "lang": "en", "description": "CWE-78 OS Command Injection", "cweId": "CWE-78"}]}], "x_generator": {"engine": "Vulnogram 0.0.9"}, "source": {"discovery": "EXTERNAL"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T01:07:05.971Z"}, "title": "CVE Program Container", "references": [{"url": "https://puppet.com/security/cve/CVE-2022-3276", "tags": ["x_transferred"]}]}]}}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:puppet:puppetlabs-mysql:*:*:*:*:*:*:*:*", "matchCriteriaId": "8320CC9A-A0CA-43C7-A02E-6555FC04FAF0", "versionEndExcluding": "13.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Command injection is possible in the puppetlabs-mysql module prior to version 13.0.0. A malicious actor is able to exploit this vulnerability only if they are able to provide unsanitized input to the module. This condition is rare in most deployments of Puppet and Puppet Enterprise."}, {"lang": "es", "value": "Una inyecci\u00f3n de comandos es posible en el m\u00f3dulo puppetlabs-mysql versiones anteriores a 13.0.0. Un actor malicioso puede explotar esta vulnerabilidad s\u00f3lo si es capaz de proporcionar una entrada no saneada al m\u00f3dulo. Esta condici\u00f3n es rara en la mayor\u00eda de las implementaciones de Puppet y Puppet Enterprise"}], "id": "CVE-2022-3276", "lastModified": "2023-06-29T14:57:08.057", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.4, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.7, "impactScore": 6.0, "source": "security@puppet.com", "type": "Secondary"}]}, "published": "2022-10-07T21:15:12.013", "references": [{"source": "security@puppet.com", "tags": ["Vendor Advisory"], "url": "https://puppet.com/security/cve/CVE-2022-3276"}], "sourceIdentifier": "security@puppet.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-78"}], "source": "security@puppet.com", "type": "Secondary"}]}

{"affected_release": [{"advisory": "RHSA-2022:7238", "cpe": "cpe:/a:redhat:openstack:13::el7", "package": "puppet-mysql-0:5.2.2-0.20180216012143.a5497b2.el7ost", "product_name": "Red Hat OpenStack Platform 13.0 - ELS", "release_date": "2022-10-27T00:00:00Z"}, {"advisory": "RHSA-2022:7238", "cpe": "cpe:/a:redhat:openstack:13::el7", "package": "puppet-mysql-0:5.2.2-0.20180216012143.a5497b2.el7ost", "product_name": "Red Hat OpenStack Platform 13.0 (Queens) for RHEL 7.6 EUS", "release_date": "2022-10-27T00:00:00Z"}, {"advisory": "RHSA-2022:7238", "cpe": "cpe:/a:redhat:openstack:16.1::el8", "package": "puppet-mysql-0:10.4.1-2.20221019195006.95f9b98.el8ost", "product_name": "Red Hat OpenStack Platform 16.1", "release_date": "2022-10-27T00:00:00Z"}, {"advisory": "RHSA-2022:7238", "cpe": "cpe:/a:redhat:openstack:16.2::el8", "package": "puppet-mysql-0:10.4.1-2.20221019195006.95f9b98.el8ost", "product_name": "Red Hat OpenStack Platform 16.2", "release_date": "2022-10-27T00:00:00Z"}, {"advisory": "RHSA-2022:7238", "cpe": "cpe:/a:redhat:openstack:17.0::el9", "package": "puppet-mysql-0:10.6.1-0.20220614215045.937d044.el9ost", "product_name": "Red Hat OpenStack Platform 17.0", "release_date": "2022-10-27T00:00:00Z"}], "bugzilla": {"description": "Puppetlabs-mysql: Command Injection in the puppetlabs-mysql module", "id": "2132541", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2132541"}, "csaw": false, "cvss3": {"cvss3_base_score": "8.4", "cvss3_scoring_vector": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "status": "verified"}, "cwe": "CWE-78", "details": ["Command injection is possible in the puppetlabs-mysql module prior to version 13.0.0. A malicious actor is able to exploit this vulnerability only if they are able to provide unsanitized input to the module. This condition is rare in most deployments of Puppet and Puppet Enterprise.", "A flaw was in the puppetlabs-mysql module, where a Command injection can occur. This flaw allows a malicious actor to provide unsanitized input to the module."], "name": "CVE-2022-3276", "public_date": "2022-10-04T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2022-3276\nhttps://nvd.nist.gov/vuln/detail/CVE-2022-3276\nhttps://puppet.com/security/cve/CVE-2022-3276"], "statement": "This condition is rare in most deployments of Puppet and Puppet Enterprise.", "threat_severity": "Important", "upstream_fix": "Puppetlabs-mysql 13.0.0"}