Unrated severityNVD Advisory· Published Jul 19, 2022· Updated Sep 16, 2024
Sensitive Parameter Exposure in Puppet Bolt prior to 3.24
CVE-2022-2394
Description
Puppet Bolt prior to version 3.24.0 will print sensitive parameters when planning a run resulting in them potentially being logged when run programmatically, such as via Puppet Enterprise.
Affected products
2- Puppet/Boltv5Range: 3.24.0
Patches
Vulnerability mechanics
References
1- puppet.com/security/cve/CVE-2022-2394mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.