Lucene search
K

41 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/05/21 12:3 p.m.9 views

Security Bulletin: Storage Virtualize Ansible Collection is affected by a vulnerability in the cryptography package

Summary Storage Virtualize Ansible Collection uses the cryptography package to provide common cryptographic algorithms. Version cryptography-46.0.5 package is vulnerable to CVE-2026-39892. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected...

9.8CVSS5.8AI score0.00652EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/18 5:24 p.m.20 views

Security Bulletin: Storage Virtualize Ansible Collection is affected by a vulnerability in the paramiko package

Summary Storage Virtualize Ansible Collection uses the paramiko package to provide common ssh capability. paramiko-4.0.0-py3-none-any.whl is vulnerable to CVE-2026-44405. Vulnerability Details CVEID:CVE-2026-44405 DESCRIPTION: In Paramiko through 4.0.0 before a448945, rsakey.py allows the SHA-1...

3.4CVSS5.8AI score0.00114EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/01/08 12:0 a.m.5 views

Amazon Linux 2023 : ansible (ALAS2023-2025-1330)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1330 advisory. A flaw was found in ansible-collection-community-general. This vulnerability allows for information exposure IE of sensitive credentials, specifically plaintext passwords, via verbose output when runni...

5.5CVSS7.1AI score0.00117EPSS
Exploits0References4
EUVD
EUVD
added 2025/12/04 12:31 p.m.4 views

EUVD-2025-201152

A flaw was found in ansible-collection-community-general. This vulnerability allows for information exposure IE of sensitive credentials, specifically plaintext passwords, via verbose output when running Ansible with debug modes. Attackers with access to logs could retrieve these secrets and...

5.5CVSS5.8AI score0.00117EPSS
Exploits0References3
OSV
OSV
added 2025/12/04 12:31 p.m.4 views

GHSA-8GGH-XWR9-3373 Ansible Community General Collection is vulnerable to exposure of sensitive information

A flaw was found in ansible-collection-community-general. This vulnerability allows for information exposure IE of sensitive credentials, specifically plaintext passwords, via verbose output when running Ansible with debug modes. Attackers with access to logs could retrieve these secrets and...

5.5CVSS6.2AI score0.00117EPSS
Exploits0References7
NVD
NVD
added 2025/12/04 10:16 a.m.5 views

CVE-2025-14010

A flaw was found in ansible-collection-community-general. This vulnerability allows for information exposure IE of sensitive credentials, specifically plaintext passwords, via verbose output when running Ansible with debug modes. Attackers with access to logs could retrieve these secrets and...

5.5CVSS0.00117EPSS
Exploits0References5
OSV
OSV
added 2025/12/04 10:16 a.m.2 views

DEBIAN-CVE-2025-14010

A flaw was found in ansible-collection-community-general. This vulnerability allows for information exposure IE of sensitive credentials, specifically plaintext passwords, via verbose output when running Ansible with debug modes. Attackers with access to logs could retrieve these secrets and...

5.5CVSS5.3AI score0.00117EPSS
Exploits0References1
OSV
OSV
added 2025/12/04 10:16 a.m.3 views

UBUNTU-CVE-2025-14010

A flaw was found in ansible-collection-community-general. This vulnerability allows for information exposure IE of sensitive credentials, specifically plaintext passwords, via verbose output when running Ansible with debug modes. Attackers with access to logs could retrieve these secrets and...

5.5CVSS5.8AI score0.00117EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/12/04 9:51 a.m.5 views

CVE-2025-14010

A flaw was found in ansible-collection-community-general. This vulnerability allows for information exposure IE of sensitive credentials, specifically plaintext passwords, via verbose output when running Ansible with debug modes. Attackers with access to logs could retrieve these secrets and...

5.5CVSS5.8AI score0.00117EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/12/04 9:51 a.m.4 views

CVE-2025-14010 Ansible-collection-community-general: ansible-collection-community-general: keycloak user module leaks credentials in verbose output

A flaw was found in ansible-collection-community-general. This vulnerability allows for information exposure IE of sensitive credentials, specifically plaintext passwords, via verbose output when running Ansible with debug modes. Attackers with access to logs could retrieve these secrets and...

5.5CVSS6AI score0.00117EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/12/04 9:51 a.m.30 views

CVE-2025-14010 Ansible-collection-community-general: ansible-collection-community-general: keycloak user module leaks credentials in verbose output

A flaw was found in ansible-collection-community-general. This vulnerability allows for information exposure IE of sensitive credentials, specifically plaintext passwords, via verbose output when running Ansible with debug modes. Attackers with access to logs could retrieve these secrets and...

5.5CVSS0.00117EPSS
Exploits0References5
CVE
CVE
added 2025/12/04 9:51 a.m.23 views

CVE-2025-14010

CVE-2025-14010 affects the Ansible Community General collection, where a flaw in ansible-collection-community-general can cause information exposure of sensitive credentials (plaintext passwords) via verbose output when Ansible runs with debug. This means attackers with access to logs could poten...

5.5CVSS6AI score0.00117EPSS
Exploits0References5Affected Software1
CNNVD
CNNVD
added 2025/12/04 12:0 a.m.4 views

Community General Collection 安全漏洞

Community General Collection is a collection of automation tools open-sourced by Ansible Collections. A security vulnerability exists in ansible-collection-community-general, which stems from exporting sensitive credentials in debug mode, which could lead to information disclosure...

5.5CVSS6.1AI score0.00117EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/12/04 12:0 a.m.17 views

Linux Distros Unpatched Vulnerability : CVE-2025-14010

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in ansible-collection-community-general. This vulnerability allows for information exposure IE of sensitive credentials, specifically plaintext...

5.5CVSS5.4AI score0.00117EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-18311

Malware in sbrugna...

7.5CVSS7.4AI score0.01385EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-52225

Malicious code in bioql PyPI...

8.2CVSS6.4AI score0.00139EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2020-25646

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in Ansible Collection community.crypto. opensslprivatekeyinfo exposes private key in logs. This directly impacts confidentiality CVE-2020-25646...

7.5CVSS7.1AI score0.01385EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 7:15 a.m.7 views

CVE-2024-53979

ibm.ibmzhmc is an Ansible collection for the IBM Z HMC. The Ansible collection "ibm.ibmzhmc" writes password-like properties in clear text into its log file and into the output returned by some of its Ansible module in the following cases: 1. The 'bootftppassword' and 'sscmasterpw' properties are...

8.2CVSS6.7AI score0.00139EPSS
Exploits0References1
Rockylinux
Rockylinux
added 2025/05/07 7:13 p.m.4 views

ansible-collection-microsoft-sql bug fix and enhancement update

An update is available for ansible-collection-microsoft-sql. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release,...

6.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 4:54 p.m.10 views

CVE-2020-25646

A flaw was found in Ansible Collection community.crypto. opensslprivatekeyinfo exposes private key in logs. This directly impacts confidentiality...

7.5CVSS6.5AI score0.01385EPSS
Exploits0
Rows per page
Query Builder