CVSS 3 Base Score: Posted On: April 30, 2020Assessed Risk Level: MediumOn March 25, 2020, JRuby published a release addressing https://github.com/jruby/jruby/issues/6137. Previous releases of Puppet Server contain a vulnerable version of JRuby. Puppet Server 6.10.0 contains an updated version of JRuby to address the issue.For more information about this issue, refer to the GitHub issueStatus:Affected software versions:Puppet Server versions prior to 6.10.0Resolved in:Puppet Server 6.10.0← Back to CVE Listings