Puppet DB Privilege Escalation Vulnerability: SQL Query Exploitation

Puppet DB Privilege Escalation Vulnerability: SQL Query Exploitation

CVE-2021-27021 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

A flaw was discovered in Puppet DB, this flaw results in an escalation of privileges which allows the user to delete tables via an SQL query.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.