Lucene search
China National Vulnerability DatabaseCNVD-2021-102820HistoryNov 13, 2021 - 12:00 a.m.
Puppet Server Information Disclosure Vulnerability
2021-11-1300:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
0.002 Low
EPSS
Percentile
60.6%
Puppet Server is a software from Puppet Labs in the U.S. for pushing configurations from the primary server to other servers. an information disclosure vulnerability exists in Puppet Agent and Puppet Server, which stems from a lack of restrictions and protections in the HTTP transport process, which could lead to an HTTP redirect to other hosts when performing HTTP credential disclosure. No detailed vulnerability details are available at this time.
Related
redhatcve
redhatcve
CVE-2021-27023
2021-11-16 18:08:17
veracode
veracode
Information Disclosure
2022-11-21 03:50:15
redhat
redhat
(RHSA-2022:1478) Important: Satellite 6.9.9 Async Bug Fix Update
2022-04-20 20:12:28
(RHSA-2022:1708) Important: Satellite 6.10.5 Async Bug Fix Update
2022-05-04 12:54:25
(RHSA-2022:4866) Important: Satellite Tools 6.10.5 Async Bug Fix Update
2022-06-01 13:30:58
nessus
nessus
fedora
fedora
[SECURITY] Fedora 35 Update: puppet-7.12.1-1.fc35
2021-11-28 00:45:39
github
github
Unsafe HTTP Redirect in Puppet Agent and Puppet Server
2021-12-02 17:52:45
nvd
nvd
CVE-2021-27023
2021-11-18 15:15:09
osv
osv
Unsafe HTTP Redirect in Puppet Agent and Puppet Server
2021-12-02 17:52:45
CVE-2021-27023
2021-11-18 15:15:09
debiancve
debiancve
CVE-2021-27023
2021-11-18 15:15:09
cve
cve
CVE-2021-27023
2021-11-18 15:15:09
prion
prion
Heap overflow
2021-11-18 15:15:00
ubuntucve
ubuntucve
CVE-2021-27023
2021-11-18 00:00:00
freebsd
freebsd
puppet -- Unsafe HTTP Redirect
2021-11-09 00:00:00
openvas
openvas
Fedora: Security Advisory for puppet (FEDORA-2021-1c0e788093)
2021-12-04 00:00:00
cvelist
cvelist
CVE-2021-27023
2021-11-18 14:33:18