2 matches found
CVE-2014-9355
Puppet Enterprise before 3.7.1 allows remote authenticated users to obtain licensing and certificate signing request information by leveraging access to an unspecified API endpoint...
CVE-2014-9355
Puppet Enterprise before 3.7.1 is affected. An authenticated remote user can obtain licensing and certificate signing request information by accessing an unspecified API endpoint. The affected component is Puppet Enterprise (pre-3.7.1) and the root cause is an information-disclosure path exposed ...