Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2023-2198

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.01429EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2023-1070

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.00873EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/23 5:43 a.m.5 views

CVE-2023-39059

An issue in ansible semaphore v.2.8.90 allows a remote attacker to execute arbitrary code via a crafted payload to the extra variables parameter...

8.8CVSS7.7AI score0.01429EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:37 a.m.6 views

CVE-2023-28609

api/auth.go in Ansible Semaphore before 2.8.89 mishandles authentication...

9.8CVSS6.8AI score0.00873EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/09/22 12:0 a.m.9 views

The vulnerability of the Ansible Semaphore configuration management interface, related to improper control of code generation, allows a attacker to execute arbitrary code.

The vulnerability of the Ansible Semaphore configuration management interface is related to incorrect code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9CVSS8.1AI score0.01429EPSS
Exploits1References3Affected Software1
Veracode
Veracode
added 2023/09/02 8:25 a.m.18 views

Arbitrary Code Injection

github.com/ansible-semaphore/semaphore is vulnerable to Arbitrary Code Injection. The vulnerability exists in makeCmd function at AnsiblePlaybook.go which allows a remote attacker to execute arbitrary code via a crafted payload to the extra variables parameter...

8.8CVSS7.8AI score0.01429EPSS
Exploits1References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2023/08/28 10:15 p.m.4 views

CVE-2023-39059

An issue in ansible semaphore v.2.8.90 allows a remote attacker to execute arbitrary code via a crafted payload to the extra variables parameter...

8.8CVSS7.8AI score0.01429EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2023/08/28 12:0 a.m.3 views

PT-2023-5312 · Ansible · Ansible

Name of the Vulnerable Software and Affected Versions: ansible semaphore version 2.8.90 Description: The issue in ansible semaphore allows a remote attacker to execute arbitrary code via a crafted payload to the extra variables parameter. This is related to incorrect code generation management in...

9CVSS8.2AI score0.01429EPSS
Exploits1References12
Cvelist
Cvelist
added 2023/08/28 12:0 a.m.23 views

CVE-2023-39059

An issue in ansible semaphore v.2.8.90 allows a remote attacker to execute arbitrary code via a crafted payload to the extra variables parameter...

9AI score0.01429EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/08/28 12:0 a.m.9 views

CVE-2023-39059

An issue in ansible semaphore v.2.8.90 allows a remote attacker to execute arbitrary code via a crafted payload to the extra variables parameter...

8.8AI score0.01429EPSS
Exploits1References2
OSV
OSV
added 2023/03/18 9:30 p.m.69 views

GHSA-PMHG-CMJC-3875 Ansible Semaphore mishandles authentication

api/auth.go in Ansible Semaphore before 2.8.89 mishandles authentication...

9.8CVSS9.4AI score0.00873EPSS
Exploits0References4
OSV
OSV
added 2023/03/18 9:15 p.m.26 views

CVE-2023-28609

api/auth.go in Ansible Semaphore before 2.8.89 mishandles authentication...

9.8CVSS9.7AI score
Exploits0References2
NVD
NVD
added 2023/03/18 9:15 p.m.30 views

CVE-2023-28609

api/auth.go in Ansible Semaphore before 2.8.89 mishandles authentication...

9.8CVSS9.4AI score0.00873EPSS
Exploits0References2
Prion
Prion
added 2023/03/18 9:15 p.m.26 views

Authentication flaw

api/auth.go in Ansible Semaphore before 2.8.89 mishandles authentication...

7.5CVSS9.4AI score0.00873EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/03/18 12:0 a.m.3 views

Red Hat Ansible 授权问题漏洞

Red Hat Ansible is a computer system configuration manager from Red Hat, an American company. The product can be used to publish, manage, and orchestrate computer systems. A security vulnerability exists in Red Hat Ansible Semaphore versions prior to 2.8.89 that stems from incorrectly handled...

9.8CVSS8.3AI score0.00873EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/03/18 12:0 a.m.27 views

CVE-2023-28609

api/auth.go in Ansible Semaphore before 2.8.89 mishandles authentication...

9.7AI score0.00873EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/03/18 12:0 a.m.8 views

CVE-2023-28609

api/auth.go in Ansible Semaphore before 2.8.89 mishandles authentication...

9.5AI score0.00873EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/03/18 12:0 a.m.6 views

PT-2023-21844

Name of the Vulnerable Software and Affected Versions Ansible Semaphore versions prior to 2.8.89 Description The issue is related to the mishandling of authentication in the api/auth.go file. Recommendations For versions prior to 2.8.89, update to version 2.8.89 or later to resolve the issue...

9.8CVSS9.8AI score0.00873EPSS
Exploits0References13
Rows per page
Query Builder