| 2023-11-07 | CVE-2023-5309 | Session Fixation vulnerability in Puppet Enterprise
Versions of Puppet Enterprise prior to 2021.7.6 and 2023.5 contain a flaw which results in broken session management for SAML implementations. | 9.8 |
| 2023-10-06 | CVE-2023-5214 | Improper Privilege Management vulnerability in Puppet Bolt
In Puppet Bolt versions prior to 3.27.4, a path to escalate privileges was identified. | 9.8 |
| 2023-06-07 | CVE-2023-2530 | Unspecified vulnerability in Puppet Enterprise 2021.7.1/2023.0/2023.1.0
A privilege escalation allowing remote code execution was discovered in the orchestration service. network low complexity puppet critical | 9.8 |
| 2022-10-07 | CVE-2022-3275 | Command injection is possible in the puppetlabs-apt module prior to version 9.0.0. | 9.8 |
| 2021-11-18 | CVE-2021-27023 | A flaw was discovered in Puppet Agent and Puppet Server that may result in a leak of HTTP credentials when following HTTP redirects to a different host. | 9.8 |
| 2019-12-13 | CVE-2014-0175 | Use of Hard-coded Credentials vulnerability in multiple products
mcollective has a default password set at install | 9.8 |
| 2019-03-21 | CVE-2018-11747 | Improper Certificate Validation vulnerability in Puppet Discovery
Previously, Puppet Discovery was shipped with a default generated TLS certificate in the nginx container. | 9.8 |
| 2018-07-03 | CVE-2018-11746 | Insufficiently Protected Credentials vulnerability in Puppet Discovery 1.0.0/1.0.1/1.1.0
In Puppet Discovery prior to 1.2.0, when running Discovery against Windows hosts, WinRM connections can fall back to using basic auth over insecure channels if a HTTPS server is not available. | 9.8 |
| 2017-03-03 | CVE-2017-2290 | Incorrect Permission Assignment for Critical Resource vulnerability in Puppet Mcollective-Puppet-Agent 1.12.0
On Windows installations of the mcollective-puppet-agent plugin, version 1.12.0, a non-administrator user can create an executable that will be executed with administrator privileges on the next "mco puppet" run. | 9.0 |
| 2013-03-20 | CVE-2013-1640 | The (1) template and (2) inline_template functions in the master server in Puppet before 2.6.18, 2.7.x before 2.7.21, and 3.1.x before 3.1.1, and Puppet Enterprise before 1.2.7 and 2.7.x before 2.7.2 allows remote authenticated users to execute arbitrary code via a crafted catalog request. | 9.0 |