CVSS 3 Base Score: 3.7Posted On: December 12, 2019Assessed Risk Level: LowPrevious versions of Puppet Agent didn't verify the peer in the SSL connection prior to downloading the CRL. This issue is resolved in Puppet Agent 6.4.0.Status:Affected software versions:Puppet 6.x prior to 6.4.0Puppet Agent 6.x prior to 6.4.0Resolved in:Puppet 6.4.0Puppet Agent 6.x prior to 6.4.0← Back to CVE Listings