Search

Find a vulnerability

Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

    2 vulnerabilities found for remediate by puppet

    CVE-2021-27018 (GCVE-0-2021-27018)

    Vulnerability from cvelistv5 – Published: 2021-08-30 17:56 – Updated: 2024-08-03 20:40
    VLAI
    Summary
    The mechanism which performs certificate validation was discovered to have a flaw that resulted in certificates signed by an internal certificate authority to not be properly validated. This issue only affects clients that are configured to utilize Tenable.sc as the vulnerability data source.
    Severity
    No CVSS data available.
    CWE
    • Improper Verification of Cryptographic Signature
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Puppet Remediate Affected: Affects Puppet Remediate prior to 2.0, resolved in 2.0
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T20:40:47.040Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://puppet.com/security/cve/CVE-2021-27018"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Puppet Remediate",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Affects Puppet Remediate prior to 2.0, resolved in 2.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The mechanism which performs certificate validation was discovered to have a flaw that resulted in certificates signed by an internal certificate authority to not be properly validated. This issue only affects clients that are configured to utilize Tenable.sc as the vulnerability data source."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Improper Verification of Cryptographic Signature",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-08-30T17:56:05.000Z",
            "orgId": "ca2a266c-be2f-4d4b-92d0-47b76b1a9c4e",
            "shortName": "puppet"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://puppet.com/security/cve/CVE-2021-27018"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "security@puppet.com",
              "ID": "CVE-2021-27018",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Puppet Remediate",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Affects Puppet Remediate prior to 2.0, resolved in 2.0"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The mechanism which performs certificate validation was discovered to have a flaw that resulted in certificates signed by an internal certificate authority to not be properly validated. This issue only affects clients that are configured to utilize Tenable.sc as the vulnerability data source."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Improper Verification of Cryptographic Signature"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://puppet.com/security/cve/CVE-2021-27018",
                  "refsource": "MISC",
                  "url": "https://puppet.com/security/cve/CVE-2021-27018"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ca2a266c-be2f-4d4b-92d0-47b76b1a9c4e",
        "assignerShortName": "puppet",
        "cveId": "CVE-2021-27018",
        "datePublished": "2021-08-30T17:56:05.000Z",
        "dateReserved": "2021-02-09T00:00:00.000Z",
        "dateUpdated": "2024-08-03T20:40:47.040Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-27018 (GCVE-0-2021-27018)

    Vulnerability from nvd – Published: 2021-08-30 17:56 – Updated: 2024-08-03 20:40
    VLAI
    Summary
    The mechanism which performs certificate validation was discovered to have a flaw that resulted in certificates signed by an internal certificate authority to not be properly validated. This issue only affects clients that are configured to utilize Tenable.sc as the vulnerability data source.
    Severity
    No CVSS data available.
    CWE
    • Improper Verification of Cryptographic Signature
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Puppet Remediate Affected: Affects Puppet Remediate prior to 2.0, resolved in 2.0
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T20:40:47.040Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://puppet.com/security/cve/CVE-2021-27018"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Puppet Remediate",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Affects Puppet Remediate prior to 2.0, resolved in 2.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The mechanism which performs certificate validation was discovered to have a flaw that resulted in certificates signed by an internal certificate authority to not be properly validated. This issue only affects clients that are configured to utilize Tenable.sc as the vulnerability data source."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Improper Verification of Cryptographic Signature",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-08-30T17:56:05.000Z",
            "orgId": "ca2a266c-be2f-4d4b-92d0-47b76b1a9c4e",
            "shortName": "puppet"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://puppet.com/security/cve/CVE-2021-27018"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "security@puppet.com",
              "ID": "CVE-2021-27018",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Puppet Remediate",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Affects Puppet Remediate prior to 2.0, resolved in 2.0"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The mechanism which performs certificate validation was discovered to have a flaw that resulted in certificates signed by an internal certificate authority to not be properly validated. This issue only affects clients that are configured to utilize Tenable.sc as the vulnerability data source."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Improper Verification of Cryptographic Signature"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://puppet.com/security/cve/CVE-2021-27018",
                  "refsource": "MISC",
                  "url": "https://puppet.com/security/cve/CVE-2021-27018"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ca2a266c-be2f-4d4b-92d0-47b76b1a9c4e",
        "assignerShortName": "puppet",
        "cveId": "CVE-2021-27018",
        "datePublished": "2021-08-30T17:56:05.000Z",
        "dateReserved": "2021-02-09T00:00:00.000Z",
        "dateUpdated": "2024-08-03T20:40:47.040Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }