cvedb.io
CVE-2017-10690
MEDIUM · CVSS 6.5
EPSS exploitation probability: 0%
Published 2018-02-09T20:29:00.270 · Last modified 2026-06-17T01:00:33.183

Summary

In previous versions of Puppet Agent it was possible for the agent to retrieve facts from an environment that it was not classified to retrieve from. This was resolved in Puppet Agent 5.3.4, included in Puppet Enterprise 2017.3.4

Affected products

puppet — puppet

Does this affect you?

Add your gear to cvedb and we'll alert you only when puppet ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.