Skip to main content
Press slash or control plus K to focus the search. Use the arrow keys to navigate results and press enter to open a threat.

Threats Tagged 'cve-2026-8804'

View all threats tagged with 'cve-2026-8804'. Filter and sort to focus on specific types of threats.

Pro Console Lifetime

Stop chasing alerts. Route them.

Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.

Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)

View Plans & Pricing

API access activates after upgrading in Console -> Billing.

Breach by OffSeqOFFSEQFRIENDS — 25% OFF

Check if your credentials are on the dark web

Instant breach scanning across billions of leaked records. Free tier available.

Scan now

Filter Threats

Narrow down the results by type, severity, or affected countries

Search threats by title, CVE ID, or description. Maximum 100 characters.
Active filters (1):Tag: cve-2026-8804

Threats Tagged 'cve-2026-8804'

Click on any threat for detailed analysis and mitigation recommendations

CVE-2026-8804: CWE-313 Cleartext storage in a file or on disk in Perforce Puppet CoreCVE-2026-8804
0

CVE-2026-8804 is a vulnerability in Perforce Puppet Core's resource_api module where sensitive flags on parameters are not preserved, causing sensitive data such as passwords to be stored in cleartext in the agent's local transaction state cache. This affects versions of the resource_api module from 1.5.0 through 1.9.1 and 2.0.0. The issue was fixed in resource_api versions 1.9.2 and 2.0.1, which are included in Puppet Core 8.20.0 and Puppet Enterprise 2023.8.10 and 2025.11.0. The CVSS 4.0 base score is 6.7, indicating a medium severity vulnerability.

Join the discussion

Showing 1 to 1 of 1 result

Filters:Tag: cve-2026-8804
Page 1 of 1
OffSeq TrainingCredly Certified

Lead Pen Test Professional

Technical5-day eLearningPECB Accredited
View courses