Medium severity6.5NVD Advisory· Published Feb 9, 2018· Updated Jun 17, 2026
CVE-2017-10690
CVE-2017-10690
Description
In previous versions of Puppet Agent it was possible for the agent to retrieve facts from an environment that it was not classified to retrieve from. This was resolved in Puppet Agent 5.3.4, included in Puppet Enterprise 2017.3.4
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3<5.3.4+ 1 more
- (no CPE)range: <5.3.4
- (no CPE)range: 5.x prior to 5.3.4
- Range: 2017.3.x prior to 2017.3.4
Patches
Vulnerability mechanics
References
2- access.redhat.com/errata/RHSA-2018:2927nvdThird Party Advisory
- puppet.com/security/cve/CVE-2017-10690nvdVendor Advisory
News mentions
0No linked articles in our index yet.