Lucene search
K

4 matches found

UbuntuCve
UbuntuCve
added 2025/12/04 10:16 a.m.2 views

CVE-2025-14010

A flaw was found in ansible-collection-community-general. This vulnerability allows for information exposure IE of sensitive credentials, specifically plaintext passwords, via verbose output when running Ansible with debug modes. Attackers with access to logs could retrieve these secrets and...

5.5CVSS7AI score0.00117EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2024/11/12 12:0 a.m.9 views

CVE-2024-11079

A flaw was found in Ansible-Core. This vulnerability allows attackers to bypass unsafe content protections using the hostvars object to reference and execute templated content. This issue can lead to arbitrary code execution if remote data or module outputs are improperly templated within playboo...

5.5CVSS7AI score0.00502EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/11/06 10:15 a.m.8 views

CVE-2024-9902

A flaw was found in Ansible. The ansible-core user module can allow an unprivileged user to silently create or replace the contents of any file on any system path and take ownership of it when a privileged user executes the user module against the unprivileged user's home directory. If the...

6.3CVSS6.8AI score0.00248EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2024/09/14 3:15 a.m.17 views

CVE-2024-8775

A flaw was found in Ansible, where sensitive information stored in Ansible Vault files can be exposed in plaintext during the execution of a playbook. This occurs when using tasks such as includevars to load vaulted variables without setting the nolog: true parameter, resulting in sensitive data...

5.5CVSS6.9AI score0.00269EPSS
Exploits0References3
Rows per page
Query Builder