CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

101 matches found

AstraLinux•added 2026/06/19 11:10 a.m.•6 views

Astra Linux – Vulnerability in Ansible

Ansible versions 2.9.x before 2.9.1, 2.8.x before 2.8.7, and 2.7.x before 2.7.15 do not respect the “nolog” flag set to True when using Sumologic and Splunk callback plugins to send task result events to collectors. This could lead to the disclosure and collection of sensitive data...

6.5CVSS6.6AI score0.01857EPSS

Exploits1References2

AstraLinux•added 2026/06/19 11:10 a.m.•4 views

Astra Linux – Vulnerability in Ansible

Ansible-playbook -k and Ansible CLI tools, all versions up to 2.8.4; all versions of 2.7.x up to 2.7.13; and all versions of 2.6.x up to 2.6.19. Prompt passwords should be expanded from templates, as these templates may contain special characters. Passwords should be wrapped to prevent triggering...

6.5CVSS6.7AI score0.01503EPSS

Exploits0References2

CBLMariner•added 2026/06/13 6:21 p.m.•6 views

CVE-2026-11332 affecting package ansible for versions less than 2.17.11-2

CVE-2026-11332 affecting package ansible for versions less than 2.17.11-2. A patched version of the package is available...

7.8CVSS5.2AI score0.00155EPSS

Exploits0

AstraLinux•added 2026/05/20 5:53 a.m.•6 views

Astra Linux - уязвимость в ansible

There exists an absolute path traversal attack within the Ansible automation platform. This flaw allows an attacker to create a malicious Ansible role and have the victim execute that role. A symbolic link can be used to overwrite a file that is outside of the extraction path...

6.3CVSS7AI score0.00859EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•7 views

Astra Linux - уязвимость в ansible

A flaw was discovered in Ansible’s amazon.aws collection when using the towercallback parameter from the amazon.aws.ec2instance module. This flaw allows an attacker to exploit the issue, as the module handles the parameter insecurely, resulting in the password being leaked in the logs...

7.5CVSS6.9AI score0.00712EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в ansible

A flaw was discovered in Ansible, where a user’s controller is vulnerable to template injection. This issue can occur when facts used in the template do not include special template characters, especially if the user attempts to embed templates within multi-line YAML strings. This flaw allows...

7.1CVSS7AI score0.00854EPSS

Exploits0References2

Tenable Nessus•added 2026/05/11 12:0 a.m.•9 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: ansible (UTSA-2026-017472)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017472 advisory. A flaw was found in Ansible Engine affecting Ansible Engine versions 2.7.x before 2.7.17 and 2.8.x before 2.8.11 and 2.9.x before 2.9.7 as well as Ansible Tower befo...

5.5CVSS5.7AI score0.00376EPSS

Exploits0References4

Tenable Nessus•added 2026/05/09 12:0 a.m.•8 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: ansible (UTSA-2026-017346)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017346 advisory. An absolute path traversal attack exists in the Ansible automation platform. This flaw allows an attacker to craft a malicious Ansible role and make the victim execu...

6.3CVSS5.9AI score0.00859EPSS

Exploits0References4