A flaw was discovered in Puppet DB, this flaw results in an escalation of privileges which allows the user to delete tables via an SQL query.
References
Link | Resource |
---|---|
https://puppet.com/security/cve/cve-2021-27021/ | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
24 Jan 2022, 16:46
Type | Values Removed | Values Added |
---|---|---|
First Time |
Puppet puppet Enterprise
|
|
CPE | cpe:2.3:a:puppet:puppet_enterprise:*:*:*:*:*:*:*:* |
29 Jul 2021, 12:16
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:puppet:puppetdb:*:*:*:*:*:*:*:* cpe:2.3:a:puppet:puppet:*:*:*:*:enterprise:*:*:* cpe:2.3:a:puppet:puppet:*:*:*:*:*:*:*:* |
|
CWE | CWE-89 | |
CVSS |
v2 : v3 : |
v2 : 6.5
v3 : 8.8 |
References | (MISC) https://puppet.com/security/cve/cve-2021-27021/ - Vendor Advisory |
20 Jul 2021, 11:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-07-20 11:15
Updated : 2023-12-10 13:55
NVD link : CVE-2021-27021
Mitre link : CVE-2021-27021
CVE.ORG link : CVE-2021-27021
JSON object : View
Products Affected
puppet
- puppetdb
- puppet_enterprise
- puppet