Vulnerabilities > Puppet > Puppet Server > 0.2.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-11-18 | CVE-2021-27023 | A flaw was discovered in Puppet Agent and Puppet Server that may result in a leak of HTTP credentials when following HTTP redirects to a different host. | 9.8 |
| 2020-03-11 | CVE-2020-7943 | Unspecified vulnerability in Puppet Enterprise and Puppet Server Puppet Server and PuppetDB provide useful performance and debugging information via their metrics API endpoints. | 5.0 |
| 2014-12-17 | CVE-2014-7170 | Race Condition vulnerability in Puppet Server 0.2.0 Race condition in Puppet Server 0.2.0 allows local users to obtain sensitive information by accessing it in between package installation or upgrade and the start of the service. | 1.9 |