CVSS 3 Base Score: Posted On: July 28, 2015Assessed Risk Level: Medium On July 14th, Oracle announced several security vulnerabilities in Java. Puppet Enterprise versions prior to 3.8.2 contained a vulnerable version of Java. Puppet Enterprise 3.8.2 and 2015.2.0 contain an updated version of Java that has patched the vulnerabilities. For more information about the Java vulnerabilities, refer to the Oracle security announcement. Status:Affected software versions:Puppet Enterprise 3.xResolved in:Puppet Enterprise 3.8.2Puppet Enterprise 2015.2.0← Back to CVE Listings