CVE-2025-5459 | Perforce Puppet Enterprise up to 2023.8.3/2025.3 Class os command injection

Inserito da Angelo Barbosa | Giu 26, 2025 | CVE

A vulnerability classified as very critical was found in Perforce Puppet Enterprise up to 2023.8.3/2025.3. Affected by this vulnerability is an unknown functionality. The manipulation of the argument Class leads to os command injection.

This vulnerability is known as CVE-2025-5459. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-5459 | Perforce Puppet Enterprise up to 2023.8.3/2025.3 Class os command injection

Post correlati

CVE-2024-29823 | Ivanti Endpoint Manager GetDBVulnerabilities sql injection

CVE-2025-37992 | Linux Kernel up to 5.15.183/6.1.139/6.6.91/6.12.29/6.14.7 net_sched change null pointer dereference

CVE-2024-6357 | OpenText ArcSight Intelligence up to 6.4.12 authorization

CVE-2024-6231 | Request a Quote Plugin up to 2.4.0 on WordPress Setting cross site scripting