← back
CVE-2017-2296

CVE-2017-2296

EPSS 0.9%
In Puppet Enterprise 2017.1.x and 2017.2.1, using specially formatted strings with certain formatting characters as Classifier node group names or RBAC role display names causes errors, effectively causing a DOS to the service. This was resolved in Puppet Enterprise 2017.2.2.
Affected products
Puppet · Puppet Enterprise

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://puppet.com/security/cve/cve-2017-2296