Lucene search
K

15 matches found

BDU FSTEC
BDU FSTEC
added 2024/09/13 12:0 a.m.5 views

The vulnerability of the ansible-connection module in the Ansible Configuration Management system, related to the disclosure of information in error messages, allows a perpetrator to gain access to confidential data.

The vulnerability of the ansible-connection module in the Ansible Configuration Management system, including Ansible Core, Ansible Base, is related to the disclosure of information in error messages. Exploiting this vulnerability can allow attackers to access confidential data...

5.5CVSS6.8AI score0.00384EPSS
Exploits0References11Affected Software6
BDU FSTEC
BDU FSTEC
added 2023/09/05 12:0 a.m.6 views

The vulnerability of the Red Hat Ansible configuration management system lies in the lack of protective measures for SQL query structures, allowing attackers to compromise the integrity and accessibility of protected information.

The vulnerability of the Red Hat Ansible configuration management system lies in the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to compromise the integrity and accessibility of the protected information by using the...

9CVSS5.6AI score
Exploits0References3Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 4:27 a.m.2 views

SUSE CVE-2018-10875

A flaw was found in ansible. ansible.cfg is read from the current working directory which can be altered to make it point to a plugin or a module path under the control of an attacker, thus allowing the attacker to execute arbitrary code...

7.8CVSS9.1AI score0.00587EPSS
Exploits0References10
BDU FSTEC
BDU FSTEC
added 2022/01/17 12:0 a.m.5 views

The vulnerability of the write_data method in the Ansible configuration management system lies in the use of insecure temporary files, allowing attackers to access confidential data.

The vulnerability of the writedata method in the Ansible configuration management system is related to insecure temporary files. Exploiting this vulnerability could allow an attacker to access confidential data...

4.7CVSS6.5AI score0.00374EPSS
Exploits0References9Affected Software5
BDU FSTEC
BDU FSTEC
added 2022/01/17 12:0 a.m.8 views

The vulnerability of the Ansible configuration management system arises from improper processing of output data for registration logs, allowing an attacker to access confidential information.

The vulnerability of the Ansible configuration management system is related to incorrect processing of output data for registration logs. Exploiting this vulnerability can allow an attacker to gain access to confidential data...

5.5CVSS6.7AI score0.00407EPSS
Exploits0References9Affected Software4
BDU FSTEC
BDU FSTEC
added 2022/01/17 12:0 a.m.5 views

The vulnerability of the Ansible configuration management system, related to insecure temporary files, allows a hacker to access confidential data.

The vulnerability of the Ansible configuration management system is related to insecure temporary files. Exploiting this vulnerability could allow an attacker to access confidential data...

5.5CVSS6.6AI score0.00376EPSS
Exploits0References9Affected Software4
BDU FSTEC
BDU FSTEC
added 2021/04/21 12:0 a.m.5 views

The vulnerability of the rsyslog configuration file in the Ansible configuration management system allows a hacker to gain unauthorized access to protected information.

The vulnerability of the rsyslog configuration file in the Ansible configuration management system is related to incorrect default access settings. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

6.5CVSS6.6AI score0.00294EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/05/21 12:0 a.m.7 views

The vulnerability of the Ansible configuration management system, related to insufficient validation of input data, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Ansible configuration management system is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

6.8CVSS6.5AI score0.01649EPSS
Exploits0References12Affected Software10
BDU FSTEC
BDU FSTEC
added 2019/02/07 12:0 a.m.5 views

The vulnerability of the Ansible configuration management system lies in the lack of control over the path used to locate the configuration file ansible.cfg, which allows a attacker to execute arbitrary code.

The vulnerability of the Ansible configuration management system lies in the reading of the ansible.cfg file from the working directory. This file’s location can be altered, allowing the attacker to point it to a plugin or module that is under their control. Exploiting this vulnerability could...

9.8CVSS7.2AI score0.00587EPSS
Exploits0References4Affected Software1
RedHat Linux
RedHat Linux
added 2019/01/16 5:11 p.m.3 views

ansible: ansible.cfg is being read from current working directory allowing possible code execution

It was found that ansible.cfg is being read from the current working directory, which can be made to point to plugin or module paths that are under control of the attacker. This could allow an attacker to execute arbitrary code...

7.8CVSS7.4AI score0.00587EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/07/31 5:49 p.m.5 views

ansible: ansible.cfg is being read from current working directory allowing possible code execution

It was found that ansible.cfg is being read from the current working directory, which can be made to point to plugin or module paths that are under control of the attacker. This could allow an attacker to execute arbitrary code...

7.8CVSS7.4AI score0.00587EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/07/10 5:20 p.m.5 views

ansible: ansible.cfg is being read from current working directory allowing possible code execution

It was found that ansible.cfg is being read from the current working directory, which can be made to point to plugin or module paths that are under control of the attacker. This could allow an attacker to execute arbitrary code...

7.8CVSS7.4AI score0.00587EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/07/10 12:56 p.m.7 views

ansible: ansible.cfg is being read from current working directory allowing possible code execution

It was found that ansible.cfg is being read from the current working directory, which can be made to point to plugin or module paths that are under control of the attacker. This could allow an attacker to execute arbitrary code...

7.8CVSS7.4AI score0.00587EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/07/10 11:33 a.m.9 views

ansible: ansible.cfg is being read from current working directory allowing possible code execution

It was found that ansible.cfg is being read from the current working directory, which can be made to point to plugin or module paths that are under control of the attacker. This could allow an attacker to execute arbitrary code...

7.8CVSS7.4AI score0.00587EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/07/10 9:49 a.m.7 views

ansible: ansible.cfg is being read from current working directory allowing possible code execution

It was found that ansible.cfg is being read from the current working directory, which can be made to point to plugin or module paths that are under control of the attacker. This could allow an attacker to execute arbitrary code...

7.8CVSS7.4AI score0.00587EPSS
Exploits0References4
Rows per page
Query Builder