Today > | 1 Medium vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-9160

Sept. 30, 2024, 12:45 p.m.

Product(s) Impacted

PEADM Forge Module

  • before 3.24.0

Description

In versions of the PEADM Forge Module prior to 3.24.0 a security misconfiguration was discovered.

Weaknesses

CWE-295
Improper Certificate Validation

The product does not validate, or incorrectly validates, a certificate.

CWE ID: 295

Date

Published: Sept. 27, 2024, 7:15 p.m.

Last Modified: Sept. 30, 2024, 12:45 p.m.

Status : Awaiting Analysis

CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.

More info

Source

security@puppet.com

References

https://portal.perforce.com/ security@puppet.com