Overview

Continuous Delivery for Puppet Enterprise Security Fixes

  • Posted Oct 21, 2019

  • Updated Oct 30, 2019

  • Assessed Risk Level: High

Multiple vulnerabilities were discovered in CD4PE third party dependencies.

The following CVEs have been resolved in CD4PE 2.18.2 and 2.18.3:

Critical (CVSS v3.0 Rating 9.0-10.0)

High (CVSS v3.0 Rating 7.0-8.9)

Medium (CVSS v3.0 Rating 4.0-6.9)