Known Vulnerabilities for Discovery by Puppet
Listed below are 2 of the newest known vulnerabilities associated with "Discovery" by "Puppet".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-62197 json | OpenClaw before 2026.6.6 contains a policy bypass vulnerability in browser CDP discovery that accepts blocked WebSocket URLs.... | Not Provided | 2026-07-13 | 2026-07-13 |
| CVE-2026-59096 json | Dapr Sentry's OIDC discovery endpoint derives the issuer and jwks_uri of the /.well-known/openid-configuration document from ... | Not Provided | 2026-07-02 | 2026-07-06 |
| CVE-2026-58468 json | NocoBase through 2.1.20 contains a server-side request forgery vulnerability in the serverRequest wrapper that allows authent... | Not Provided | 2026-07-07 | 2026-07-08 |
| CVE-2026-53911 json | Cerebrate before version 1.37 allowed the id primary key field to be supplied through request input during CRUD edit operatio... | Not Provided | 2026-06-11 | 2026-06-11 |
| CVE-2026-53473 json | A flaw was found in migration-planner-ui-app. An attacker can register a malicious discovery agent with a specially crafted c... | Not Provided | 2026-06-10 | 2026-06-10 |
| CVE-2026-50196 json | Steeltoe is an open source project that provides a collection of libraries that helps users build cloud-native applications. ... | Not Provided | 2026-06-17 | 2026-06-18 |
| CVE-2026-48855 json | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Erlang OTP ssh (ssh_sftpd module) allows File Dis... | Not Provided | 2026-06-10 | 2026-06-11 |
| CVE-2026-48616 json | Rocket.Chat versions <8.5.1, 8.4.4, 8.3.6, 8.2.6, 8.1.6, 8.0.7, 7.13.9, 7.10.13 has an access control vulnerability in Livech... | Not Provided | 2026-06-17 | 2026-06-17 |
| CVE-2026-46832 json | Vulnerability in the Oracle Enterprise Manager Base Platform product of Oracle Enterprise Manager (component: Discovery Frame... | Not Provided | 2026-06-17 | 2026-06-18 |
| CVE-2026-46519 json | mcp-server-kubernetes is a Model Context Protocol server for Kubernetes cluster management. Prior to version 3.6.0, mcp-serve... | Not Provided | 2026-06-11 | 2026-06-11 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Puppet | Discovery | 1.9.0 | |||
| Application | Puppet | Discovery | 1.8.0 | |||
| Application | Puppet | Discovery | 1.7.0 | |||
| Application | Puppet | Discovery | 1.6.0 | |||
| Application | Puppet | Discovery | 1.5.0 | |||
| Application | Puppet | Discovery | 1.4.1 | |||
| Application | Puppet | Discovery | 1.4.0 | |||
| Application | Puppet | Discovery | 1.3.0 | |||
| Application | Puppet | Discovery | 1.2.0 | |||
| Application | Puppet | Discovery | 1.1.0 | |||
| Application | Puppet | Discovery | 1.0.1 | |||
| Application | Puppet | Discovery | 1.0.0 |