A flaw was discovered in Puppet Agent and Puppet Server that may result in a leak of HTTP credentials when following HTTP redirects to a different host. This is similar to CVE-2018-1000007
Name | Vendor | Start Version | End Version |
---|---|---|---|
Puppet_agent | Puppet | * | * |
Puppet_agent | Puppet | 7.0.0 | * |
Puppet_enterprise | Puppet | * | * |
Puppet_enterprise | Puppet | 2021.0.0 | * |
Puppet_server | Puppet | * | * |
Puppet_server | Puppet | 7.0.0 | * |