3 matches found
FreeBSD : puppetserver and puppetdb -- Puppet Server and PuppetDB may leak sensitive information via metrics API (36def7ba-6d2b-11ea-b115-643150d3111d)
Puppetlabs reports : Puppet Server and PuppetDB provide useful performance and debugging information via their metrics API endpoints. For PuppetDB this may contain things like hostnames. Puppet Server reports resource names and titles for defined types which may contain sensitive information as...
PT-2020-19863 · Puppet +1 · Puppet Server +3
Name of the Vulnerable Software and Affected Versions: Puppet Enterprise versions prior to 2018.1.13 Puppet Enterprise versions prior to 2019.5.0 Puppet Server versions prior to 6.9.2 Puppet Server versions prior to 5.3.12 PuppetDB versions prior to 6.9.1 PuppetDB versions prior to 5.2.13...
puppetserver and puppetdb -- Puppet Server and PuppetDB may leak sensitive information via metrics API
Puppetlabs reports: Puppet Server and PuppetDB provide useful performance and debugging information via their metrics API endpoints. For PuppetDB this may contain things like hostnames. Puppet Server reports resource names and titles for defined types which may contain sensitive information as we...