CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/06/12 12:0 a.m.•3 views

OPENSUSE-SU-2026:11007-1 ansible-core-2.21.0-3.1 on GA media

These are all security issues fixed in the ansible-core-2.21.0-3.1 package on the GA media of openSUSE Tumbleweed...

7.8CVSS5.2AI score0.00155EPSS

Exploits0References1

Tenable Nessus•added 2026/06/11 12:0 a.m.•5 views

Azure Linux 3.0 Security Update: CBL-Mariner Releases (CVE-2026-11332)

The version of CBL-Mariner Releases installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2026-11332 advisory. - A flaw was found in ansible-core. The ansible-galaxy role install command processes dependency...

7.8CVSS6.2AI score0.00155EPSS

Exploits0References1

Microsoft CVE•added 2026/06/07 8:1 a.m.•7 views

Ansible-core: argument injection in ansible-galaxy role install leads to arbitrary code execution

...

7.8CVSS5.4AI score0.00155EPSS

OPENSUSE Linux•added 2026/06/07 12:0 a.m.•5 views

ansible-core-2.20-2.20.6-1.1 on GA media (moderate)

ansible-core-2.20-2.20.6-1.1 on GA media Announcement ID: openSUSE-SU-2026:10945-1 Rating: moderate Cross-References: CVE-2023-5115 CVE-2023-5764 CVE-2024-0690 CVE-2024-11079 CVE-2024-8775 CVE-2024-9902 CVSS scores: CVE-2023-5115 SUSE : 6.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:H/A:N CVE-2023-57...

6.6CVSS6.6AI score0.00859EPSS

SUSE CVE•added 2026/06/06 2:53 a.m.•8 views

SUSE CVE-2026-11332

A flaw was found in ansible-core. The ansible-galaxy role install command processes dependency specifications from a role's meta/requirements.yml file. Due to improper neutralization of argument delimiters, a malicious role author can inject arbitrary git configuration flags through the src field...

vulnersOsv•added 2026/06/05 10:17 a.m.•5 views

Exploits0References4

agsekit (>=0.0.1 <=1.7.1), airflow-ansible-provider (=0.6.0) +371 more potentially affected by CVE-2026-11332 via ansible-core (>=2.11.0 <=2.21.0)

ansible-core PYPI version =2.11.0, =0.0.1, =1.0.0, =0.20250623.1, =0.1.0.dev2, =6.0.0, =0.2.2, =1.0.10, =0.1.0, =0.0.1, =0.0.0, =3.0.0, =0.0.3, =1.0.7 and more Source cves: CVE-2026-11332 Source advisory: SNYK:PYTHON-ANSIBLECORE-17177022...

7.8CVSS5.4AI score0.00155EPSS

Snyk•added 2026/06/05 10:17 a.m.•8 views

Arbitrary Argument Injection

Overview ansible-core is an a radically simple IT automation system. It handles configuration management, application deployment, cloud provisioning, ad-hoc task execution, network automation, and multi-node orchestration. Ansible makes complex changes like zero-downtime rolling updates with load...

8.4CVSS6.5AI score0.00155EPSS

Exploits0References2

NVD•added 2026/06/05 9:16 a.m.•11 views

CVE-2026-11332

7.8CVSS0.00155EPSS

OSV•added 2026/06/05 9:16 a.m.•6 views

UBUNTU-CVE-2026-11332

RedhatCVE•added 2026/06/05 8:21 a.m.•8 views

Exploits0References6

CVE-2026-11332

7.8CVSS5.7AI score0.00155EPSS

Exploits0References4

Cvelist•added 2026/06/05 8:21 a.m.•38 views

CVE-2026-11332 Ansible-core: argument injection in ansible-galaxy role install leads to arbitrary code execution

7.8CVSS0.00155EPSS

Vulnrichment•added 2026/06/05 8:21 a.m.•6 views

CVE-2026-11332 Ansible-core: argument injection in ansible-galaxy role install leads to arbitrary code execution

EUVD•added 2026/06/05 8:21 a.m.•8 views

EUVD-2026-34791

Debian CVE•added 2026/06/05 8:21 a.m.•8 views

CVE-2026-11332

ATTACKERKB•added 2026/06/05 8:21 a.m.•9 views

CVE-2026-11332

CVE•added 2026/06/05 8:21 a.m.•43 views

Exploits0References4

CVE-2026-11332

CVE-2026-11332 affects ansible-core via the ansible-galaxy role install command. The vulnerability arises when processing a role’s meta/requirements.yml, where improper neutralization of argument delimiters allows a malicious role author to inject arbitrary git configuration flags through the src...

Tenable Nessus•added 2026/06/05 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2026-11332

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in ansible-core. The ansible-galaxy role install command processes dependency specifications from a role's meta/requirements.yml file. Due to...

7.8CVSS6.5AI score0.00155EPSS

Positive Technologies•added 2026/06/05 12:0 a.m.•11 views

PT-2026-46910

Name of the Vulnerable Software and Affected Versions ansible-core affected versions not specified Red Hat Ansible Automation Platform affected versions not specified Description An argument injection flaw exists in the ansible-galaxy role install command. The issue occurs because dependency...