Puppetdb Security Vulnerabilities and Issues — Puppetdb CVE List

Lucene search

PuppetPuppetdb

3 matches found

CVE•added 2020/03/11 11:15 p.m.•110 views

CVE-2020-7943

Puppet Server and PuppetDB provide useful performance and debugging information via their metrics API endpoints. For PuppetDB this may contain things like hostnames. Puppet Server reports resource names and titles for defined types (which may contain sensitive information) as well as function names...

7.5CVSS7.2AI score0.65366EPSS

CVE•added 2021/07/20 11:15 a.m.•45 views

CVE-2021-27021

A flaw was discovered in Puppet DB, this flaw results in an escalation of privileges which allows the user to delete tables via an SQL query.

8.8CVSS8.8AI score0.01037EPSS

CVE•added 2021/08/30 6:15 p.m.•43 views

CVE-2021-27019

PuppetDB logging included potentially sensitive system information.

4.3CVSS4.5AI score0.00204EPSS