CVE-2018-10874

2018-07-02T13:29:00
ID CVE-2018-10874
Type cve
Reporter cve@mitre.org
Modified 2019-07-25T02:15:00

Description

In ansible it was found that inventory variables are loaded from current working directory when running ad-hoc command which are under attacker's control, allowing to run arbitrary code as a result.