CVE-2021-27026

2021-11-1814:27:21

puppet

www.cve.org

puppet enterprise

sensitive data

plan parameters

security flaw

AI Score

4.9

Confidence

High

EPSS

Percentile

12.6%

JSON

A flaw was divered in Puppet Enterprise and other Puppet products where sensitive plan parameters may be logged

CNA Affected

[
  {
    "product": "Puppet Enterprise, Puppet Connect",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Puppet Enterprise prior to 2019.8.9, Puppet Enterprise prior to 2021.4.0"
      }
    ]
  }
]

References

puppet.com/security/cve/cve-2021-27026