CVSS 3 Base Score:
3.1

Posted On:

Assessed Risk Level:
Low

PuppetDB logging included potentially sensitive system information. This has been resolved in PuppetDB 6.16.1 and 7.3.1 and in Puppet Enterprise 2019.8.6 and 2021.1.0.

Status:

Affected software versions:
  • PuppetDB 6.x prior to 6.16.1
  • PuppetDB 7.x prior to 7.3.1
  • Puppet Enterprise prior to 2019.8.6
Resolved in:
  • PuppetDB 6.16.1
  • PuppetDB 7.3.1
  • Puppet Enterprise 2019.8.6
  • Puppet Enterprise 2021.1.0
← Back to CVE Listings