VDB

CVE-2018-11751

CVE-2018-11751 PUBLISHED

Reported by puppet · Published December 16, 2019

Previous versions of Puppet Agent didn't verify the peer in the SSL connection prior to downloading the CRL. This issue is resolved in Puppet Agent 6.4.0.

Affected Products

VendorProductVersions
n/aPuppet Agent, PuppetPuppet Agent 6.x prior to 6.4.0, Puppet 6.x prior to 6.4.x
n/aPuppet Agent, Puppet*

Timeline

  • Dec 16, 2019 CVE Published
  • Apr 14, 2021 EPSS Score
  • Jun 23, 2021 EPSS Score
  • Aug 24, 2021 EPSS Score
  • Oct 26, 2021 EPSS Score
  • Dec 27, 2021 EPSS Score
  • Feb 28, 2022 EPSS Score
  • May 2, 2022 EPSS Score
  • Jul 3, 2022 EPSS Score
  • Sep 5, 2022 EPSS Score
  • Nov 6, 2022 EPSS Score
  • Jan 8, 2023 EPSS Score

References

  • x_refsource_MISC
Open in Interactive Console →
$ Console Community · 100/wk Open console ›