Camlow325

**Name of the Vulnerable Software and Affected Versions** Puppet Server versions prior to 2.3.2 Puppet 4.x versions prior to 4.4.2 Puppet Agent versions prior to 1.4.2 **Description** The issue allows remote attackers to bypass intended access restrictions by leveraging incorrect URL decoding, potentially leading to unauthorized access. **Recommendations** For Puppet Server versions prior to 2.3.2, update to version 2.3.2 or later. For Puppet 4.x versions prior to 4.4.2, update to version 4.4.2 or later. For Puppet Agent versions prior to 1.4.2, update to version 1.4.2 or later.