Your submission was sent successfully! Close

CVE-2021-27022

Published: 7 September 2021

A flaw was discovered in bolt-server and ace where running a task with sensitive parameters results in those sensitive parameters being logged when they should not be. This issue only affects SSH/WinRM nodes (inventory service nodes).

Priority

Low

CVSS 3 base score: 4.9

Status

Package Release Status
puppet
Launchpad, Ubuntu, Debian
bionic Needs triage

focal Needs triage

hirsute Ignored
(reached end-of-life)
impish Ignored
(reached end-of-life)
jammy Needs triage

kinetic Needs triage

trusty Needs triage

upstream Needs triage

xenial Ignored
(out of standard support)