Puppet Puppet Server
2 CVEs affecting Puppet Puppet Server. Latest disclosed: 2023-05-04. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2017-2295 | High | 8.2 | 2017-07-05 | Versions of Puppet prior to 4.10.1 will deserialize data off the wire (from the agent to the server, in this case) with a attacker-specified format. This could… |
CVE-2023-1894 | | 2023-05-04 | A Regular Expression Denial of Service (ReDoS) issue was discovered in Puppet Server 7.9.2 certificate validation. An issue related to specifically crafted cer… |