CVSS 3 Base Score:
6.8

Posted On:

Assessed Risk Level:
Medium

Versions of Puppet Enterprise prior to 2021.7.6 and 2023.5 contain a flaw which results in broken session management for SAML implementations.  

Status:

Affected software versions:
  • Puppet Enterprise versions prior to 2021.7.6 
  • Puppet Enterprise versions prior to 2023.5 
Resolved in:
  • Puppet Enterprise 2021.7.6 
  • Puppet Enterprise 2023.5