CVSS 3 Base Score: Posted On: January 30, 2020Assessed Risk Level: MediumPrevious releases of Puppet Enterprise contain a vulnerable version of Rack. Puppet Enterprise 2018.1.12, 2019.1.4, and 2019.3.0 contain an updated version of Rack that has patched the vulnerabilities.For more information about this vulnerability, refer to the [National Vulnerability Database](https://nvd.nist.gov/vuln/detail/CVE-2019-16782).https://nvd.nist.gov/vuln/detail/CVE-2019-16782Status:Affected software versions:Puppet Enterprise versions prior to 2018.1.12Puppet Enterprise versions prior to 2019.1.4Puppet Enterprise versions prior to 2019.3.0Resolved in:Puppet Enterprise 2018.1.12Puppet Enterprise 2019.1.4Puppet Enterprise 2019.3.0← Back to CVE Listings