Lucene search
CVE-2020-1737
Flaw in Ansible 2.7.17 and prior, 2.8.9 and prior, 2.9.6 and prior when using Extract-Zip function from win_unzip module allowing path traversal. Fixed in 2.10
Show more
| Reporter | Title | Published | Views | Family All 41 |
|---|---|---|---|---|
 | CVE-2020-1737 | 9 Mar 202015:11 | – | cvelist |
 | CVE-2020-1737 | 9 Mar 202000:00 | – | ubuntucve |
 | FreeBSD : ansible - win_unzip path normalization (0899c0d3-80f2-11ea-bafd-815569f3852d) | 20 Apr 202000:00 | – | nessus |
| Fedora 31 : ansible (2020-a3f12bcff4) | 16 Mar 202000:00 | – | nessus |
| Fedora 30 : ansible (2020-0cab7041f7) | 16 Mar 202000:00 | – | nessus |
| RHEL 7 / 8 : Ansible security update (2.8.11) (Important) (RHSA-2020:1543) | 22 Apr 202000:00 | – | nessus |
| RHEL 7 : Ansible security update (2.7.17) (Important) (RHSA-2020:1544) | 22 Apr 202000:00 | – | nessus |
| GLSA-202006-11 : Ansible: Multiple vulnerabilities | 17 Jun 202000:00 | – | nessus |
| RHEL 7 / 8 : Ansible security update (2.9.7) (Important) (RHSA-2020:1541) | 22 Apr 202000:00 | – | nessus |
| RHEL 7 / 8 : Ansible security update (2.9.7) (Important) (RHSA-2020:1542) | 22 Apr 202000:00 | – | nessus |
10
Node
OROROROROROR
[
{
"product": "Ansible",
"vendor": "Red Hat",
"versions": [
{
"status": "affected",
"version": "2.7.17 and prior"
},
{
"status": "affected",
"version": "2.8.9 and prior"
},
{
"status": "affected",
"version": "2.9.6 and prior"
},
{
"status": "affected",
"version": "fixed in 2.10"
}
]
}
]Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo09 Mar 2020 16:15Current
7High risk
Vulners AI Score7
CVSS24.6
CVSS37.5 - 7.8
EPSS0.00074