Vulnerability in Puppet Enterprise

CVE-2023-1894

A Regular Expression Denial of Service (ReDoS) issue was discovered in Puppet Server 7.9.2 certificate validation. An issue related to specifically crafted certificate names significantly slowed down server operations.

EPSS: 0.001 (20.2th percentile) — read the EPSS interpretation.