Puppet 0.24.x before 0.24.9 and 0.25.x before 0.25.2 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/daemonout, (2) /tmp/puppetdoc.txt, (3) /tmp/puppetdoc.tex, or (4) /tmp/puppetdoc.aux temporary file.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| puppet(RubyGems) | 0.24.0 | 0.24.9 | N/A |
| puppet(RubyGems) | 0.25.0 | 0.25.2 | N/A |
CVSS Metrics
