Lucene search
RedhatCVELIST:CVE-2018-16859HistoryNov 29, 2018 - 5:00 p.m.
CVE-2018-16859
2018-11-2917:00:00
CWE-532
redhat
raw.githubusercontent.com
4
Execution of Ansible playbooks on Windows platforms with PowerShell ScriptBlock logging and Module logging enabled can allow for ‘become’ passwords to appear in EventLogs in plaintext. A local user with administrator privileges on the machine can view these logs and discover the plaintext password. Ansible Engine 2.8 and older are believed to be vulnerable.
Related
nessus
nessus
RHEL 7 : ansible (RHSA-2018:3772)
2018-12-07 00:00:00
RHEL 7 : ansible (RHSA-2018:3770)
2018-12-07 00:00:00
RHEL 7 : ansible (RHSA-2018:3771)
2018-12-07 00:00:00
alpinelinux
alpinelinux
CVE-2018-16859
2018-11-29 18:29:00
redhat
redhat
(RHSA-2018:3772) Moderate: ansible security and bug fix update
2018-12-04 18:17:34
(RHSA-2018:3773) Moderate: ansible security and bug fix update
2018-12-04 18:17:44
(RHSA-2018:3770) Moderate: ansible security and bug fix update
2018-12-04 18:16:49
prion
prion
Code injection
2018-11-29 18:29:00
veracode
veracode
Information Disclosure
2019-01-15 09:27:01
Information Disclosure
2018-12-05 03:07:39
github
github
Ansible Logs Passwords If PowerShell ScriptBlock is Enabled
2022-05-14 01:14:00
debiancve
debiancve
CVE-2018-16859
2018-11-29 18:29:00
osv
osv
Ansible Logs Passwords If PowerShell ScriptBlock is Enabled
2022-05-14 01:14:00
CVE-2018-16859
2018-11-29 18:29:00
PYSEC-2018-60
2018-11-29 18:29:00
cve
cve
CVE-2018-16859
2018-11-29 18:29:00
redhatcve
redhatcve
CVE-2018-16859
2019-10-10 05:33:52
openvas
openvas
openSUSE: Security Advisory for ansible (openSUSE-SU-2019:1635-1)
2019-06-28 00:00:00