Lucene search
K

5 matches found

OpenVAS
OpenVAS
added 2025/02/13 12:0 a.m.9 views

Ubuntu: Security Advisory (USN-6846-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.1AI score0.00712EPSS
Exploits0References3
OSV
OSV
added 2020/01/28 7:52 a.m.9 views

MGASA-2020-0060 Updated ansible package fixes security vulnerabilities

A flaw was found in the solariszone module from the Ansible Community modules. When setting the name for the zone on the Solaris host, the zone name is checked by listing the process with the 'ps' bare command on the remote machine. An attacker could take advantage of this flaw by crafting the na...

7.3CVSS6.5AI score0.00736EPSS
Exploits0References4
Mageia
Mageia
added 2018/11/11 9:9 p.m.45 views

Updated ansible package fixes security vulnerabilities

It was found that inventory variables are loaded from current working directory when running ad-hoc command which are under attacker's control, allowing to run arbitrary code as a result CVE-2018-10874. It was found that ansible.cfg is being read from the current working directory, which can be...

7.8CVSS5.1AI score0.00587EPSS
Exploits0References3
OSV
OSV
added 2017/11/02 9:47 p.m.6 views

MGASA-2017-0399 Updated ansible package fixes security vulnerability

A flaw was found in the way Ansible passed certain parameters to the jenkinsplugin module. A remote attacker could use this flaw to expose sensitive information from a remote host's logs. This flaw was fixed by not allowing passwords to be specified in the "params" argument, and noting this in th...

9.8CVSS9.1AI score0.0353EPSS
Exploits0References4
OSV
OSV
added 2014/08/25 8:44 a.m.8 views

MGASA-2014-0350 Updated ansible package fixes multiple security issues

Updated ansible package fixes security vulnerabilities: The Ansible platform before version 1.6.7 suffers from input sanitization errors that allow arbitrary code execution as well as information leak, in case an attacker is able to control certain playbook variables CVE-2014-4678, CVE-2014-4966,...

9.8CVSS9.8AI score0.05197EPSS
Exploits0References7
Rows per page
Query Builder