CVSS 3 Base Score: Posted On: June 24, 2021Assessed Risk Level: HighOn May 26, 2021 curl published security updates addressing 3 CVEs: CVE-2021-22897 (Low) CVE-2021-22898 (Medium) CVE-2021-22901 (High)Previous releases of Puppet Agent contain this vulnerable version of curl. Puppet Agent 7.8.0, 6.23.0 and Puppet Enterprise 2021.2, 2019.8.7 contain an updated version of curl that has patched the vulnerabilityFor more information about this vulnerability, refer to the security announcements for CVE-2021-22901CVE-2021-22897CVE-2021-22898Status:Affected software versions:Puppet Agent 6 versions prior to 6.23.0Puppet Agent 7 versions prior to 7.8.0Puppet Enterprise prior to 2021.2Puppet Enterprise prior to 2019.8.7Resolved in:Puppet Agent 6.23.0Puppet Agent 7.8.0Puppet Enterprise 2021.2Puppet Enterprise 2019.8.7← Back to CVE Listings