2 matches found
CVE-2018-6510
A cross-site scripting vulnerability in Puppet Enterprise Console of Puppet Enterprise allows a user to inject scripts into the Puppet Enterprise Console when using the Orchestrator. Affected releases are Puppet Puppet Enterprise: 2017.3.x versions prior to 2017.3.6...
CVE-2018-6510
CVE-2018-6510 describes a cross-site scripting vulnerability in Puppet Enterprise Console (used with the Orchestrator). The issue allows an attacker to inject scripts into the Puppet Enterprise Console and is tied to Puppet Enterprise: 2017.3.x versions prior to 2017.3.6. The root cause is improp...