Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Puppetdb Security Vulnerabilities

cve
cve

CVE-2020-7943

Puppet Server and PuppetDB provide useful performance and debugging information via their metrics API endpoints. For PuppetDB this may contain things like hostnames. Puppet Server reports resource names and titles for defined types (which may contain sensitive information) as well as function names...

7.5CVSS

7.2AI Score

0.104EPSS

2020-03-11 11:15 PM
91
cve
cve

CVE-2021-27019

PuppetDB logging included potentially sensitive system information.

4.3CVSS

4.5AI Score

0.001EPSS

2021-08-30 06:15 PM
34
cve
cve

CVE-2021-27021

A flaw was discovered in Puppet DB, this flaw results in an escalation of privileges which allows the user to delete tables via an SQL query.

8.8CVSS

8.8AI Score

0.001EPSS

2021-07-20 11:15 AM
35
6