CVE-2020-7945
N/A
N/A
Summary
Local registry credentials were included directly in the CD4PE deployment definition, which could expose these credentials to users who should not have access to them. This is resolved in Continuous Delivery for Puppet Enterprise 4.0.1.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Continuous Delivery for Puppet Enterprise (CD4PE) | Affects CD4PE 4.0.0, resolved in 4.0.1 | affected |
Weaknesses
- Insufficiently Protected Credentials
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.