Puppet Enterprise

puppet_enterprise

Vendor: Puppet • 89 CVEs

CVEs (89)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-5459 1Puppet 1Puppet Enterprise Oct 14, 2025 Jun 26, 2025 8.6 HIGH· v4 8.8 HIGH· v3 N/A· v2 A user with specific node group editing permissions and a specially crafted class parameter could be used to execute commands as root on the primary host. It affects Puppet Enterprise versions 2018.1.8 through 2023.8.3 a...Show more A user with specific node group editing permissions and a specially crafted class parameter could be used to execute commands as root on the primary host. It affects Puppet Enterprise versions 2018.1.8 through 2023.8.3 and 2025.3 and has been resolved in versions 2023.8.4 and 2025.4.0.Show less
CVE-2023-5309 1Puppet 1Puppet Enterprise Nov 21, 2024 Nov 7, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Versions of Puppet Enterprise prior to 2021.7.6 and 2023.5 contain a flaw which results in broken session management for SAML implementations.
CVE-2023-5255 1Puppet 2Puppet Enterprise Puppet Server Nov 20, 2025 Oct 3, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 For certificates that utilize the auto-renew feature in Puppet Server, a flaw exists which prevents the certificates from being revoked.
CVE-2023-2530 1Puppet 1Puppet Enterprise Aug 26, 2025 Jun 7, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A privilege escalation allowing remote code execution was discovered in the orchestration service.
CVE-2023-1894 1Puppet 2Puppet Enterprise Puppet Server Jan 29, 2025 May 4, 2023 N/A· v4 5.3 MEDIUM· v3 N/A· v2 A Regular Expression Denial of Service (ReDoS) issue was discovered in Puppet Server 7.9.2 certificate validation. An issue related to specifically crafted certificate names significantly slowed down server operations.
CVE-2021-27026 1Puppet 3Puppet Puppet ConnectPuppet Enterprise Nov 21, 2024 Nov 18, 2021 N/A· v4 4.4 MEDIUM· v3 2.1 LOW· v2 A flaw was divered in Puppet Enterprise and other Puppet products where sensitive plan parameters may be logged
CVE-2021-27025 2Fedoraproject Puppet 4Fedora PuppetPuppet Agent+1 more Nov 21, 2024 Nov 18, 2021 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 A flaw was discovered in Puppet Agent where the agent may silently ignore Augeas settings or may be vulnerable to a Denial of Service condition prior to the first 'pluginsync'.
CVE-2021-27023 2Fedoraproject Puppet 4Fedora Puppet AgentPuppet Enterprise+1 more Nov 21, 2024 Nov 18, 2021 N/A· v4 9.8 CRITICAL· v3 5.0 MEDIUM· v2 A flaw was discovered in Puppet Agent and Puppet Server that may result in a leak of HTTP credentials when following HTTP redirects to a different host. This is similar to CVE-2018-1000007
CVE-2021-27022 1Puppet 2Puppet Puppet Enterprise Nov 21, 2024 Sep 7, 2021 N/A· v4 4.9 MEDIUM· v3 4.0 MEDIUM· v2 A flaw was discovered in bolt-server and ace where running a task with sensitive parameters results in those sensitive parameters being logged when they should not be. This issue only affects SSH/WinRM nodes (inventory s...Show more A flaw was discovered in bolt-server and ace where running a task with sensitive parameters results in those sensitive parameters being logged when they should not be. This issue only affects SSH/WinRM nodes (inventory service nodes).Show less
CVE-2021-27020 1Puppet 1Puppet Enterprise Nov 21, 2024 Aug 30, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Puppet Enterprise presented a security risk by not sanitizing user input when doing a CSV export.
CVE-2021-27019 1Puppet 2Puppet Enterprise Puppetdb Nov 21, 2024 Aug 30, 2021 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 PuppetDB logging included potentially sensitive system information.
CVE-2021-27021 1Puppet 3Puppet Puppet EnterprisePuppetdb Nov 21, 2024 Jul 20, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 A flaw was discovered in Puppet DB, this flaw results in an escalation of privileges which allows the user to delete tables via an SQL query.
CVE-2020-7943 1Puppet 3Puppet Enterprise Puppet ServerPuppetdb Nov 21, 2024 Mar 11, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Puppet Server and PuppetDB provide useful performance and debugging information via their metrics API endpoints. For PuppetDB this may contain things like hostnames. Puppet Server reports resource names and titles for de...Show more Puppet Server and PuppetDB provide useful performance and debugging information via their metrics API endpoints. For PuppetDB this may contain things like hostnames. Puppet Server reports resource names and titles for defined types (which may contain sensitive information) as well as function names and class names. Previously, these endpoints were open to the local network. PE 2018.1.13 & 2019.5.0, Puppet Server 6.9.2 & 5.3.12, and PuppetDB 6.9.1 & 5.2.13 disable trapperkeeper-metrics /v1 metrics API and only allows /v2 access on localhost by default. This affects software versions: Puppet Enterprise 2018.1.x stream prior to 2018.1.13 Puppet Enterprise prior to 2019.5.0 Puppet Server prior to 6.9.2 Puppet Server prior to 5.3.12 PuppetDB prior to 6.9.1 PuppetDB prior to 5.2.13 Resolved in: Puppet Enterprise 2018.1.13 Puppet Enterprise 2019.5.0 Puppet Server 6.9.2 Puppet Server 5.3.12 PuppetDB 6.9.1 PuppetDB 5.2.13Show less
CVE-2015-5686 1Puppet 1Puppet Enterprise Nov 21, 2024 Feb 27, 2020 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Parts of the Puppet Enterprise Console 3.x were found to be susceptible to clickjacking and CSRF (Cross-Site Request Forgery) attacks. This would allow an attacker to redirect user input to an untrusted site or hijack a...Show more Parts of the Puppet Enterprise Console 3.x were found to be susceptible to clickjacking and CSRF (Cross-Site Request Forgery) attacks. This would allow an attacker to redirect user input to an untrusted site or hijack a user session.Show less
CVE-2019-10694 1Puppet 1Puppet Enterprise Nov 21, 2024 Dec 12, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The express install, which is the suggested way to install Puppet Enterprise, gives the user a URL at the end of the install to set the admin password. If they do not use that URL, there is an overlooked default password...Show more The express install, which is the suggested way to install Puppet Enterprise, gives the user a URL at the end of the install to set the admin password. If they do not use that URL, there is an overlooked default password for the admin user. This was resolved in Puppet Enterprise 2019.0.3 and 2018.1.9.Show less
CVE-2013-4968 1Puppet 1Puppet Enterprise Nov 21, 2024 Dec 11, 2019 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Puppet Enterprise before 3.0.1 allows remote attackers to (1) conduct clickjacking attacks via unspecified vectors related to the console, and (2) conduct cross-site scripting (XSS) attacks via unspecified vectors relate...Show more Puppet Enterprise before 3.0.1 allows remote attackers to (1) conduct clickjacking attacks via unspecified vectors related to the console, and (2) conduct cross-site scripting (XSS) attacks via unspecified vectors related to "live management."Show less
CVE-2015-1855 3Debian PuppetRuby Lang 5Debian Linux Puppet AgentPuppet Enterprise+2 more Nov 21, 2024 Nov 29, 2019 N/A· v4 5.9 MEDIUM· v3 4.3 MEDIUM· v2 verify_certificate_identity in the OpenSSL extension in Ruby before 2.0.0 patchlevel 645, 2.1.x before 2.1.6, and 2.2.x before 2.2.2 does not properly validate hostnames, which allows remote attackers to spoof servers vi...Show more verify_certificate_identity in the OpenSSL extension in Ruby before 2.0.0 patchlevel 645, 2.1.x before 2.1.6, and 2.2.x before 2.2.2 does not properly validate hostnames, which allows remote attackers to spoof servers via vectors related to (1) multiple wildcards, (1) wildcards in IDNA names, (3) case sensitivity, and (4) non-ASCII characters.Show less
CVE-2018-11749 1Puppet 1Puppet Enterprise Nov 21, 2024 Aug 24, 2018 N/A· v4 9.8 CRITICAL· v3 5.0 MEDIUM· v2 When users are configured to use startTLS with RBAC LDAP, at login time, the user's credentials are sent via plaintext to the LDAP server. This affects Puppet Enterprise 2018.1.3, 2017.3.9, and 2016.4.14, and is fixed in...Show more When users are configured to use startTLS with RBAC LDAP, at login time, the user's credentials are sent via plaintext to the LDAP server. This affects Puppet Enterprise 2018.1.3, 2017.3.9, and 2016.4.14, and is fixed in Puppet Enterprise 2018.1.4, 2017.3.10, and 2016.4.15. It scored an 8.5 CVSS score.Show less
CVE-2018-6513 1Puppet 2Puppet Puppet Enterprise Nov 21, 2024 Jun 11, 2018 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Puppet Enterprise 2016.4.x prior to 2016.4.12, Puppet Enterprise 2017.3.x prior to 2017.3.7, Puppet Enterprise 2018.1.x prior to 2018.1.1, Puppet Agent 1.10.x prior to 1.10.13, Puppet Agent 5.3.x prior to 5.3.7, and Pupp...Show more Puppet Enterprise 2016.4.x prior to 2016.4.12, Puppet Enterprise 2017.3.x prior to 2017.3.7, Puppet Enterprise 2018.1.x prior to 2018.1.1, Puppet Agent 1.10.x prior to 1.10.13, Puppet Agent 5.3.x prior to 5.3.7, and Puppet Agent 5.5.x prior to 5.5.2, were vulnerable to an attack where an unprivileged user on Windows agents could write custom facts that can escalate privileges on the next puppet run. This was possible through the loading of shared libraries from untrusted paths.Show less
CVE-2018-6512 1Puppet 3Pe Razor Server Puppet EnterpriseRazor Server Nov 21, 2024 Jun 11, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The previous version of Puppet Enterprise 2018.1 is vulnerable to unsafe code execution when upgrading pe-razor-server. Affected releases are Puppet Enterprise: 2018.1.x versions prior to 2018.1.1 and razor-server and pe...Show more The previous version of Puppet Enterprise 2018.1 is vulnerable to unsafe code execution when upgrading pe-razor-server. Affected releases are Puppet Enterprise: 2018.1.x versions prior to 2018.1.1 and razor-server and pe-razor-server prior to 1.9.0.0.Show less

12 3 4 5 Next