Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2020/04/27 8:9 p.m.20 views

CVE-2020-7943

A flaw was found where the metrics API endpoints of Puppet Server and PuppetDB leaked sensitive information to the local network. Listening to these network endpoints could allow attackers the ability to exploit additional computer systems. The highest impact of this flaw is confidentiality...

7.5CVSS3.9AI score0.07884EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2020/03/11 11:15 p.m.20 views

CVE-2020-7943

Puppet Server and PuppetDB provide useful performance and debugging information via their metrics API endpoints. For PuppetDB this may contain things like hostnames. Puppet Server reports resource names and titles for defined types which may contain sensitive information as well as function names...

7.5CVSS7.1AI score0.07884EPSS
Exploits0References2
CVE
CVE
added 2020/03/11 9:56 p.m.152 views

CVE-2020-7943

CVE-2020-7943 affects Puppet Server and PuppetDB, where the metrics API endpoints may disclose sensitive information. The issue stems from exposed metrics data (for PuppetDB: hostnames; for Puppet Server: resource names, titles, function names, and class names) when these endpoints were accessibl...

7.5CVSS7.2AI score0.07884EPSS
Exploits0References1Affected Software3
Debian CVE
Debian CVE
added 2020/03/11 9:56 p.m.34 views

CVE-2020-7943

Puppet Server and PuppetDB provide useful performance and debugging information via their metrics API endpoints. For PuppetDB this may contain things like hostnames. Puppet Server reports resource names and titles for defined types which may contain sensitive information as well as function names...

7.5CVSS7.6AI score0.07884EPSS
Exploits0
Rows per page
Query Builder