A flaw was discovered in Puppet DB, this flaw results in an escalation of privileges which allows the user to delete tables via an SQL query.
References
Link | Resource |
---|---|
https://puppet.com/security/cve/cve-2021-27021/ | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
24 Jan 2022, 16:46
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:puppet:puppet_enterprise:*:*:*:*:*:*:*:* |
29 Jul 2021, 12:16
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:puppet:puppet:*:*:*:*:*:*:*:* cpe:2.3:a:puppet:puppet:*:*:*:*:enterprise:*:*:* cpe:2.3:a:puppet:puppetdb:*:*:*:*:*:*:*:* |
|
References | (MISC) https://puppet.com/security/cve/cve-2021-27021/ - Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : 6.5
v3 : 8.8 |
CWE | CWE-89 |
20 Jul 2021, 11:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-07-20 11:15
Updated : 2024-02-04 21:47
NVD link : CVE-2021-27021
Mitre link : CVE-2021-27021
CVE.ORG link : CVE-2021-27021
JSON object : View
Products Affected
puppet
- puppet_enterprise
- puppet
- puppetdb