{"id":"AZL-45426","summary":"CVE-2013-4969 affecting package puppet 7.34.0-1","details":"Puppet before 3.3.3 and 3.4 before 3.4.1 and Puppet Enterprise (PE) before 2.8.4 and 3.1 before 3.1.1 allows local users to overwrite arbitrary files via a symlink attack on unspecified files.","modified":"2026-04-21T04:32:46.590843Z","published":"2014-01-07T18:55:06Z","upstream":["CVE-2013-4969"],"references":[{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2013-4969"}],"affected":[{"package":{"name":"puppet","ecosystem":"Azure Linux:3","purl":"pkg:rpm/azure-linux/puppet"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"last_affected":"7.34.0-1"}]}],"database_specific":{"source":"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-45426.json"}}],"schema_version":"1.7.5"}