Vulnerabilities > Puppet > Puppetdb > 2.0.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-20 | CVE-2021-27021 | SQL Injection vulnerability in Puppet A flaw was discovered in Puppet DB, this flaw results in an escalation of privileges which allows the user to delete tables via an SQL query. | 6.5 |
| 2020-03-11 | CVE-2020-7943 | Unspecified vulnerability in Puppet Enterprise and Puppet Server Puppet Server and PuppetDB provide useful performance and debugging information via their metrics API endpoints. | 5.0 |