Vulnerabilities > Puppet > Puppet Server > 0.2.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-11-18 | CVE-2021-27023 | A flaw was discovered in Puppet Agent and Puppet Server that may result in a leak of HTTP credentials when following HTTP redirects to a different host. | 9.8 |
| 2020-03-11 | CVE-2020-7943 | Unspecified vulnerability in Puppet Server Puppet Server and PuppetDB provide useful performance and debugging information via their metrics API endpoints. | 7.5 |