What the vulnerability does
01Description
In Puppet Bolt versions prior to 3.27.4, a path to escalate privileges was identified.
CVE-2023-5214
MEDIUM
CVE-2023-5214: CVE-2023-5214 - Privilege Escalation in Puppet Bolt
CVSS base score
6.5/10
CVSS vector
CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:N
Key dates
02Disclosure timeline
October 6, 2023
CVE published
September 19, 2024
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2017-20081 Hindu Matrimonial Script reports.php privileges management
CVE-2020-7311 Privilege Escalation vulnerability in MA for Windows
CVE-2017-0935
CVE-2023-7016 Privilege Escalation in SafeNet Authentication Client
CVE-2024-38770 WordPress Backup and Staging by WP Time Capsule plugin <= 1.22.20 - Authentication Bypass and Privilege Escalation Vulnerability
