1
Candidate: CVE-2014-9355
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9355
5
http://secunia.com/advisories/61265
6
http://puppetlabs.com/security/cve/cve-2014-9355
8
Puppet Enterprise before 3.7.1 allows remote authenticated users to obtain
9
licensing and certificate signing request information by leveraging access
10
to an unspecified API endpoint.
13
mdeslaur> specific to Puppet Enterprise
20
upstream_puppet: needs-triage
21
lucid_puppet: not-affected
22
precise_puppet: not-affected
23
trusty_puppet: not-affected
24
utopic_puppet: not-affected
25
devel_puppet: not-affected