5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L
3.7 Low
CVSS2
Access Vector
LOCAL
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:H/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
37.9%
NVD reports:
An incomplete fix was found for the fix of the flaw CVE-2020-1733
ansible: insecure temporary directory when running become_user from
become directive. The provided fix is insufficient to prevent the
race condition on systems using ACLs and FUSE filesystems..
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
FreeBSD | any | noarch | py36-ansible | = 2.9.0 | UNKNOWN |
FreeBSD | any | noarch | py36-ansible | <= 2.9.9 | UNKNOWN |
FreeBSD | any | noarch | py37-ansible | = 2.9.0 | UNKNOWN |
FreeBSD | any | noarch | py37-ansible | <= 2.9.9 | UNKNOWN |
FreeBSD | any | noarch | py38-ansible | = 2.9.0 | UNKNOWN |
FreeBSD | any | noarch | py38-ansible | <= 2.9.9 | UNKNOWN |
FreeBSD | any | noarch | py39-ansible | = 2.9.0 | UNKNOWN |
FreeBSD | any | noarch | py39-ansible | <= 2.9.9 | UNKNOWN |
FreeBSD | any | noarch | py36-ansible27 | = 2.9.0 | UNKNOWN |
FreeBSD | any | noarch | py36-ansible27 | <= 2.9.9 | UNKNOWN |
5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L
3.7 Low
CVSS2
Access Vector
LOCAL
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:H/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
37.9%