This script is Copyright (C) 2016-2017 Tenable Network Security, Inc.
The remote FreeBSD host is missing a security-related update.
Puppet reports :
Puppet Enterprise previously included a puppet-agent MCollective
plugin that allowed you to pass the `--server` argument to
MCollective. This insecure argument enabled remote code execution via
connection to an untrusted host. The puppet-agent MCollective version
included in PE 2016.2.1, this option is disabled by default.
See also :
Update the affected package.
Risk factor :
Medium / CVSS Base Score : 4.9