This script is Copyright (C) 2014-2015 Tenable Network Security, Inc.
The remote FreeBSD host is missing a security-related update.
Foreman Security reports :
The smart proxy when running in an SSL-secured mode permits incoming
API calls to any endpoint without requiring, or performing any
verification of an SSL client certificate. This permits any client
with access to the API to make requests and perform actions permitting
control of Puppet CA, DHCP, DNS etc.)
See also :
Update the affected package.
Risk factor :
High / CVSS Base Score : 7.5