The previous version of Puppet Enterprise 2018.1 is vulnerable to unsafe code execution when upgrading pe-razor-server. Affected releases are Puppet Enterprise: 2018.1.x versions before 2018.1.1 and razor-server and pe-razor-server before 1.9.0.0.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
puppet razor-server |
||
puppet puppet enterprise |
||
puppet pe-razor-server |
Vulmon