2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

CVE-2015-7224 (v3: 9.8) 21 Dec 2017
puppetlabs-mysql 3.1.0 through 3.6.0 allow remote attackers to bypass authentication by leveraging creation of a database account without a password when a 'mysql_user' user parameter contains a host with a netmask.