CVE-2013-4965

Priority
Description
Puppet Enterprise before 3.1.0 does not properly restrict the number of
authentication attempts by a console account, which makes it easier for
remote attackers to bypass intended access restrictions via a brute-force
attack.
Notes
mdeslaurseems to only affect Puppet Enterprise
Package
Upstream:not-affected
More Information

Updated: 2020-03-18 22:13:30 UTC (commit 2ea7df7bd1e69e1e489978d2724a936eb3faa1b8)