CVSS 3 Base Score: 5.4Posted On: May 1, 2018Assessed Risk Level: MediumPrevious versions of Puppet Enterprise 2017.3 were vulnerable to a XSS attack when special crafted query was used in the Puppet Enterprise Console.Status:Affected software versions:Puppet Enterprise 2017.3.x prior to 2017.3.6Resolved in:Puppet Enterprise 2017.3.6← Back to CVE Listings