2 matches found
UBUNTU-CVE-2026-8804
Puppet resourceapi shipped in Puppet Core 8.x and Puppet Enterprise...
CVE-2026-8804
Puppet resourceapi shipped in Puppet Core 8.x and Puppet Enterprise 2023.8.x and 2025.x does not preserve the sensitive flag on parameters defined via the resource-api, causing values such as passwords to be stored in cleartext in the agent's local transaction state cache. Affected versions of th...