CVE-2013-4971

Overview

CVE-2013-4971 (Unauthenticated access to node endpoints could cause data leakage)

  • Posted March 4, 2014

  • Assessed Risk Level: Medium

Unauthenticated read access to the node endpoint in the console could result in information leakage in PE versions earlier than 3.2.

Status

  • Resolved in Puppet Enterprise 3.2.0