CVSS 3 Base Score:
4.1

Posted On:

Assessed Risk Level:
Medium

Puppet Bolt prior to version 3.24.0 will print sensitive parameters when planning a run resulting in them potentially being logged when run programmatically, such as via Puppet Enterprise. * https://github.com/puppetlabs/bolt/blob/main/CHANGELOG.md#bolt-3240-2022-06-29

Status:

Affected software versions:

- Puppet Bolt prior to 3.24.0

Resolved in:

- Puppet Bolt 3.24.0

← Back to CVE Listings