Facter on Windows is vulnerable to a DLL preloading attack, which could lead to a privilege escalation. External References: https://puppet.com/security/cve/CVE-2018-6514
Statement: This issue did not affect the versions of puppet-agent as shipped with Red Hat Satellite 6 as this issue is specific to Windows platform only.