Lucene search
K

17 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in Ansible

A flaw was discovered in the Ansible Engine when the fetch module is used. An attacker could intercept the module, inject a new path, and then select a new destination path on the controller node. All versions under 2.7.x, 2.8.x, and 2.9.x branches are believed to be vulnerable...

4.6CVSS6.7AI score0.00487EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-0009

Malware in sbrugna...

4.2CVSS6.2AI score0.00522EPSS
Exploits0References24
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2020-1735

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the Ansible Engine when the fetch module is used. An attacker could intercept the module, inject a new path, and then choose a new destinati...

4.6CVSS6.7AI score0.00487EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:17 a.m.4 views

SUSE CVE-2019-3828

Ansible fetch module before versions 2.5.15, 2.6.14, 2.7.8 has a path traversal vulnerability which allows copying and overwriting files outside of the specified destination in the local ansible controller host, by not restricting an absolute path...

4.2CVSS9.1AI score0.00522EPSS
Exploits0References12
BDU FSTEC
BDU FSTEC
added 2022/01/17 12:0 a.m.5 views

The vulnerability of the fetch module in the Ansible configuration management system stems from deficiencies in path name restrictions, allowing attackers to access confidential data and compromise its integrity.

The vulnerability of the fetch module in the Ansible configuration system is related to deficiencies in pathname restrictions for directories. Exploiting this vulnerability could allow an attacker to access confidential data and compromise its integrity...

4.6CVSS6.5AI score0.00487EPSS
Exploits1References10Affected Software5
RedHat Linux
RedHat Linux
added 2020/04/22 2:11 p.m.10 views

ansible: path injection on dest parameter in fetch module

A flaw was found in the Ansible Engine when the fetch module is used. An attacker could intercept the module, inject a new path, and then choose a new destination path on the controller node...

4.6CVSS7.2AI score0.00487EPSS
Exploits1References4
OSV
OSV
added 2020/03/16 4:15 p.m.3 views

UBUNTU-CVE-2020-1735

A flaw was found in the Ansible Engine when the fetch module is used. An attacker could intercept the module, inject a new path, and then choose a new destination path on the controller node. All versions in 2.7.x, 2.8.x and 2.9.x branches are believed to be vulnerable...

4.6CVSS6.7AI score0.00487EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2019/11/07 1:47 p.m.4 views

Ansible: path traversal in the fetch module

A path traversal flaw was found in ansible. The fetch module allows copying and overwriting files outside of the specified destination in the local ansible controller host by not restricting an absolute path. The main threat from this vulnerability is to data confidentiality and integrity...

4.2CVSS7.1AI score0.00522EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2019/04/25 12:0 a.m.11 views

The vulnerability of the fetch module in the Ansible configuration management system arises from incorrect restrictions on the path to the restricted-access directory. This allows attackers to gain unauthorized access to information and compromise its integrity.

The vulnerability of the fetch module in the Ansible configuration system is related to an incorrect path limitation for the restricted access directory. Exploiting this vulnerability could allow a local attacker to gain unauthorized access to information and compromise its integrity by copying a...

4.2CVSS5.8AI score0.00522EPSS
Exploits0References10Affected Software6
OSV
OSV
added 2019/03/27 1:29 p.m.3 views

DEBIAN-CVE-2019-3828

Ansible fetch module before versions 2.5.15, 2.6.14, 2.7.8 has a path traversal vulnerability which allows copying and overwriting files outside of the specified destination in the local ansible controller host, by not restricting an absolute path...

4.2CVSS6.2AI score0.00522EPSS
Exploits0References1
OSV
OSV
added 2019/03/27 1:29 p.m.4 views

ALPINE-CVE-2019-3828

Ansible fetch module before versions 2.5.15, 2.6.14, 2.7.8 has a path traversal vulnerability which allows copying and overwriting files outside of the specified destination in the local ansible controller host, by not restricting an absolute path...

4.2CVSS6.7AI score0.00522EPSS
Exploits0References1
PyPA
PyPA
added 2019/03/27 1:29 p.m.8 views

PYSEC-2019-5

Ansible fetch module before versions 2.5.15, 2.6.14, 2.7.8 has a path traversal vulnerability which allows copying and overwriting files outside of the specified destination in the local ansible controller host, by not restricting an absolute path...

4.2CVSS6.7AI score0.00522EPSS
Exploits0References9Affected Software1
UbuntuCve
UbuntuCve
added 2019/03/27 1:29 p.m.32 views

CVE-2019-3828

Ansible fetch module before versions 2.5.15, 2.6.14, 2.7.8 has a path traversal vulnerability which allows copying and overwriting files outside of the specified destination in the local ansible controller host, by not restricting an absolute path...

4.2CVSS6.8AI score0.00522EPSS
Exploits0References3
OSV
OSV
added 2019/03/27 1:29 p.m.3 views

UBUNTU-CVE-2019-3828

Ansible fetch module before versions 2.5.15, 2.6.14, 2.7.8 has a path traversal vulnerability which allows copying and overwriting files outside of the specified destination in the local ansible controller host, by not restricting an absolute path...

10CVSS6.7AI score0.00522EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/02/28 8:20 a.m.3 views

Ansible: path traversal in the fetch module

A path traversal flaw was found in ansible. The fetch module allows copying and overwriting files outside of the specified destination in the local ansible controller host by not restricting an absolute path. The main threat from this vulnerability is to data confidentiality and integrity...

4.2CVSS7.1AI score0.00522EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/02/28 8:19 a.m.9 views

Ansible: path traversal in the fetch module

A path traversal flaw was found in ansible. The fetch module allows copying and overwriting files outside of the specified destination in the local ansible controller host by not restricting an absolute path. The main threat from this vulnerability is to data confidentiality and integrity...

4.2CVSS7.1AI score0.00522EPSS
Exploits0References5
CNVD
CNVD
added 2019/02/26 12:0 a.m.2 views

Ansible fetch module path traversal vulnerability

Ansible is a computer system configuration manager that can be used to publish, manage, and orchestrate computer systems. A path traversal vulnerability exists in the Ansible fetch module. An attacker can exploit this vulnerability to copy and overwrite files...

4.2CVSS7.7AI score0.00522EPSS
Exploits0References1
Rows per page
Query Builder