CVSS 3 Base Score: Posted On: April 30, 2020Assessed Risk Level: LowOn January 8, 2020, curl published security updates addressing CVE-2019-15601. Previous releases of Puppet Agent and Puppet Developer Kit (PDK) contain a vulnerable version of curl. Puppet Agent 5.5.19 and 6.13.0, Puppet Enterprise 2018.1.13 and 2019.4.0, and PDK 1.16.0 contain an updated version of curl that has patched the vulnerabilityFor more information about these vulnerabilities, refer to the security announcement for CVE-2019-15601.Status:Affected software versions:Puppet Agent 5 versions prior to 5.5.19Puppet Agent 6 versions prior to 6.13.0Puppet Enterprise prior to 2018.1.13Puppet Enterprise prior to 2019.4.0PDK versions prior to 1.16.0.0Resolved in:Puppet Agent 5.5.19Puppet Agent 6.13.0Puppet Enterprise 2018.1.13Puppet Enterprise 2019.4.0PDK 1.16.0.0← Back to CVE Listings