CVSS 3 Base Score: Posted On: May 12, 2020Assessed Risk Level: High On April 14th 2020, Oracle announced several security vulnerabilities in Java. Previous releases of Puppet Enterprise contain a vulnerable version of Java. Puppet Enterprise 2018.1.15 and 2019.7.0 contain an updated version of Java that has patched the vulnerabilities. For more information about these Java vulnerabilities, refer to the Oracle security announcement. Status:Affected software versions:Puppet Enterprise versions prior to 2018.1.15Puppet Enterprise versions prior to 2019.7.0Resolved in:Puppet Enterprise 2018.1.15Puppet Enterprise 2019.7.0← Back to CVE Listings