Vulnerabilities > CVE-2021-27020 - Improper Neutralization of Formula Elements in a CSV File vulnerability in Puppet Enterprise
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Puppet Enterprise presented a security risk by not sanitizing user input when doing a CSV export.