Lucene search
PRIOn knowledge basePRION:CVE-2023-4237HistoryOct 04, 2023 - 3:15 p.m.
Code injection
2023-10-0415:15:00
PRIOn knowledge base
www.prio-n.com
10
ansible
automation platform
code injection
key compromise
system integrity
system confidentiality
system availability
A flaw was found in the Ansible Automation Platform. When creating a new keypair, the ec2_key module prints out the private key directly to the standard output. This flaw allows an attacker to fetch those keys from the log files, compromising the system’s confidentiality, integrity, and availability.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ansible_automation_platform | eq | 2.0 |
Related
cve
cve
CVE-2023-4237
2023-10-04 15:15:12
cvelist
cvelist
osv
osv
CVE-2023-4237
2023-10-04 15:15:12
Ansible may expose private key
2023-10-04 15:30:35
veracode
veracode
Sensitive Information Disclosure
2024-04-21 05:57:53
redhatcve
redhatcve
CVE-2023-4237
2023-08-08 11:19:51
debiancve
debiancve
CVE-2023-4237
2023-10-04 15:15:12
ubuntucve
ubuntucve
CVE-2023-4237
2023-10-04 00:00:00
github
github
Ansible may expose private key
2023-10-04 15:30:35
nvd
nvd
CVE-2023-4237
2023-10-04 15:15:12
ibm
ibm