CVE-2017-2299 : Versions of the puppetlabs-apache module prior to 1.11.1 and 2.1.0 make it very

Versions of the puppetlabs-apache module prior to 1.11.1 and 2.1.0 make it very easy to accidentally misconfigure TLS trust. If you specify the `ssl_ca` parameter but do not specify the `ssl_certs_dir` parameter, a default will be provided for the `ssl_certs_dir` that will trust certificates from any of the system-trusted certificate authorities. This did not affect FreeBSD.

Published 2017-09-15 18:29:00

Updated 2019-10-03 00:03:26

Source Perforce

View at NVD, CVE.org

Products affected by CVE-2017-2299

Puppet » Puppetlabs-apache » Version: 1.4.1 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:1.4.1:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 1.4.0 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:1.4.0:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 1.3.0 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:1.3.0:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 1.2.0 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:1.2.0:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 0.0.4 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:0.0.4:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 1.7.0 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:1.7.0:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 1.5.0 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:1.5.0:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 1.1.1 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:1.1.1:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 1.0.1 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:1.0.1:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 0.7.0 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:0.7.0:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 0.4.0 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:0.4.0:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 2.0.0 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:2.0.0:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 1.11.0 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:1.11.0:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 1.10.0 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:1.10.0:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 1.8.1 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:1.8.1:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 1.8.0 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:1.8.0:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 0.11.0 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:0.11.0:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 0.10.0 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:0.10.0:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 0.9.0 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:0.9.0:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 0.8.1 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:0.8.1:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 1.7.1 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:1.7.1:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 1.6.0 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:1.6.0:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 1.1.0 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:1.1.0:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 1.0.0 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:1.0.0:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 0.8.0 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:0.8.0:*:*:*:*:puppet:*:*
Matching versions
Puppet » Puppetlabs-apache » Version: 0.6.0 For Puppet
cpe:2.3:a:puppet:puppetlabs-apache:0.6.0:*:*:*:*:puppet:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2017-2299

EPSS FAQ

0.14%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 31 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2017-2299

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:P/I:N/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None
7.5	HIGH	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N	3.9	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: None Availability: None

CWE ids for CVE-2017-2299

CWE-295 Improper Certificate Validation

The product does not validate, or incorrectly validates, a certificate.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2017-2299

https://puppet.com/security/cve/CVE-2017-2299

CVE-2017-2299 - Possible TLS trust misconfiguration in puppetlabs-apache | Puppet
Vendor Advisory
http://www.securityfocus.com/bid/100859

puppetlabs-apache CVE-2017-2299 Information Disclosure Vulnerability
Third Party Advisory;VDB Entry

Jump to

Vulnerability Details : CVE-2017-2299

Products affected by CVE-2017-2299

Exploit prediction scoring system (EPSS) score for CVE-2017-2299

CVSS scores for CVE-2017-2299

CWE ids for CVE-2017-2299

References for CVE-2017-2299