CVE-2021-27022
N/A
N/A
Summary
A flaw was discovered in bolt-server and ace where running a task with sensitive parameters results in those sensitive parameters being logged when they should not be. This issue only affects SSH/WinRM nodes (inventory service nodes).
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Puppet Enterprise | 2019.8.7 | affected |
Weaknesses
- CWE-532: [CWE-532: Insertion of Sensitive Information into Log File|https://cwe.mitre.org/data/definitions/532.html]
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.