CVE-2013-4971

Name of the Vulnerable Software and Affected Versions Puppet Enterprise versions prior to 3.2.0

Description The issue allows remote attackers to obtain sensitive information due to improper access restrictions to node endpoints in the console.

Recommendations For versions prior to 3.2.0, update to version 3.2.0 or later to resolve the issue.