Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
PuppetPuppet Agent*

2 matches found

CVE
CVEadded 2021/11/18 2:33 p.m.358 views

CVE-2021-27023

CVE-2021-27023 affects Puppet Agent and Puppet Server and is an information disclosure vulnerability where HTTP credentials can leak when following redirects to a different host. The description notes a flaw in how HTTP redirects are handled, similar to CVE-2018-1000007. The NVD metrics indicate ...

9.8CVSS7.8AI score0.01328EPSS
CVE
CVEadded 2021/11/18 2:30 p.m.159 views

CVE-2021-27025

CVE-2021-27025 affects Puppet Agent, where the agent may silently ignore Augeas settings or be vulnerable to a Denial of Service condition prior to the first pluginsync. The connected materials tie this issue to Puppet Agent across multiple contexts (including Puppet Enterprise and various Linux ...

6.5CVSS6.3AI score0.01149EPSS