CVSS 3 Base Score:

Posted On:

Assessed Risk Level:

On August 24, 2021 OpenSSL published security updates addressing several CVEs. Previous releases of the Puppet Agent contain a vulnerable version of OpenSSL. Puppet Agent version 7.11 contains an updated version of OpenSSL that has patched the vulnerabilities.


Affected software versions:
Puppet Agent 7 versions prior to 7.11
Resolved in:
Puppet Agent 7 version 7.11