CVSS 3 Base Score: Posted On: May 1, 2018Assessed Risk Level: LowOn March 3, 2018 Ruby announced several vulnerabilities.Previous versions of Puppet Agent shipped with a vulnerable version of ruby.For more information about this vulnerability, refer to Ruby’s release announcement page (https://www.ruby-lang.org/en/news/2018/03/28/ruby-2-4-4-released/).Status:Affected software versions:Puppet Agent versions prior to 1.10.12Puppet Agent versions prior to 5.3.6Puppet Agent versions prior to 5.5.1PDK versions prior to 1.5.0Puppet Enterprise versions prior to 2016.4.11Puppet Enterprise versions prior to 2017.3.6Resolved in:Puppet Agent 1.10.12Puppet Agent 5.3.6Puppet Agent 5.5.1PDK 1.5.0Puppet Enterprise 2016.4.11Puppet Enterprise 2017.3.6Puppet Enterprise 2018.1.0\ ← Back to CVE Listings
