CVE-2021-27020 - Formula Injection

CVSS 3 Base Score:
5.7

Posted On:
May 4, 2021

Assessed Risk Level:
Medium

Puppet Enterprise presented a security risk by not sanitizing user input when doing a CSV export. This has been resolved in Puppet Enterprise 2019.8.6 and 2021.1.0.

Status:

Affected software versions:

- Puppet Enterprise prior to 2019.8.6

Resolved in:

- Puppet Enterprise 2019.8.6 - Puppet Enterprise 2021.1.0

← Back to CVE Listings

A Brief Intro to Puppet for (Very) Busy People

Enforcing Better Zero Trust Security with Puppet Enterprise

A Brief Intro to Puppet for (Very) Busy People

Enforcing Better Zero Trust Security with Puppet Enterprise

CVE-2021-27020 - Formula Injection

CVSS 3 Base Score:
5.7

Posted On:
May 4, 2021

Assessed Risk Level:
Medium

Status:

Get Started

Puppet

Premium Features

CVE-2021-27020 - Formula Injection

CVSS 3 Base Score: 5.7

Posted On: May 4, 2021

Assessed Risk Level: Medium

Status:

CVSS 3 Base Score:
5.7

Posted On:
May 4, 2021

Assessed Risk Level:
Medium