Puppet Enterprise prior to 3.0.1 includes version information for the Apache and Phusion Passenger products in its HTTP response headers, which allows remote malicious users to obtain sensitive information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
puppet puppet enterprise |
||
puppet puppet enterprise 2.8.3 |
||
puppet puppet enterprise 2.5.1 |
||
puppet puppet enterprise 2.8.2 |
||
puppet puppet enterprise 2.8.0 |
||
puppet puppet enterprise 2.8.1 |
||
puppet puppet enterprise 2.5.2 |