Headline
CVE-2023-5309: CVE-2023-5309 Broken Session Management in Puppet Enterprise
Versions of Puppet Enterprise prior to 2021.7.6 and 2023.5 contain a flaw which results in broken session management for SAML implementations.
**CVSS 3 Base Score:
6.8
****Posted On:
November 7, 2023
****Assessed Risk Level:
Medium
**
Versions of Puppet Enterprise prior to 2021.7.6 and 2023.5 contain a flaw which results in broken session management for SAML implementations.
Status:
Affected software versions:
- Puppet Enterprise versions prior to 2021.7.6
- Puppet Enterprise versions prior to 2023.5
Resolved in:
- Puppet Enterprise 2021.7.6
- Puppet Enterprise 2023.5
← Back to CVE Listings