Lucene search
K

40 matches found

GithubExploit
GithubExploit
added 2026/04/30 12:42 p.m.86 views

Exploit for CVE-2026-31431

CVE-2026-31431 Copy Fail Checker Verifica si un host Linux...

7.8CVSS5.6AI score0.96267EPSS
Exploits228
RedhatCVE
RedhatCVE
added 2026/01/21 2:19 p.m.5 views

CVE-2025-14377

A security issue was discovered within the legacy Ansible playbook component of Verve Asset Manager, caused by plaintext secrets incorrectly stored when a playbook is running. This component has been retired and has been optional since the 1.36 release in 2024...

8.8CVSS5.3AI score0.00166EPSS
Exploits0References1
NVD
NVD
added 2026/01/20 2:16 p.m.4 views

CVE-2025-14377

A security issue was discovered within the legacy Ansible playbook component of Verve Asset Manager, caused by plaintext secrets incorrectly stored when a playbook is running. This component has been retired and has been optional since the 1.36 release in 2024...

8.8CVSS0.00166EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/20 1:21 p.m.5 views

CVE-2025-14377 Verve Asset Manager – Plaintext Storage Vulnerabilities

A security issue was discovered within the legacy Ansible playbook component of Verve Asset Manager, caused by plaintext secrets incorrectly stored when a playbook is running. This component has been retired and has been optional since the 1.36 release in 2024...

8.8CVSS5.2AI score0.00166EPSS
Exploits0References1
CVE
CVE
added 2026/01/20 1:21 p.m.16 views

CVE-2025-14377

CVE-2025-14377 concerns the legacy Ansible playbook component of Verve Asset Manager. The issue arises from plaintext secrets being stored during playbook execution. This component has been retired and has been optional since the 1.36 release in 2024. The CVSS v4.0 score is 8.8 (HIGH), with netwo...

8.8CVSS5.2AI score0.00166EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/20 12:0 a.m.7 views

Rockwell Automation Verve Asset Manager security vulnerability

Rockwell Automation Verve Asset Manager is a supplier-neutral OT endpoint management platform provided by Rockwell Automation. There is a security vulnerability in Rockwell Automation Verve Asset Manager, which stems from the Ansible playbook component storing plaintext keys incorrectly during...

8.8CVSS5.8AI score0.00166EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/20 12:0 a.m.13 views

PT-2026-3557

A security issue was discovered within the legacy Ansible playbook component of Verve Asset Manager, caused by plaintext secrets incorrectly stored when a playbook is running. This component has been retired and has been optional since the 1.36 release in 2024...

8.8CVSS5.2AI score0.00166EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-38549

Malicious code in bioql PyPI...

10CVSS8.7AI score0.01272EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-24948

Malicious code in bioql PyPI...

5.5CVSS5.8AI score0.00203EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/04 11:38 p.m.10 views

CVE-2024-40629

JumpServer is an open-source Privileged Access Management PAM tool that provides DevOps and IT teams with on-demand and secure access to SSH, RDP, Kubernetes, Database and RemoteApp endpoints through a web browser. An attacker can exploit the Ansible playbook to write arbitrary files, leading to...

10CVSS8.3AI score0.01272EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2024/11/06 12:31 p.m.3 views

ansible (>=10.0.0a1 <=10.7.0), ansible-playbook-grapher (>=2.3.0 <=2.5.0) +24 more potentially affected by CVE-2024-9902 via ansible-core (>=2.17.14 <=2.17.4)

ansible-core PYPI version =2.17.14, =10.0.0a1, =2.3.0, =0.2.1, =2.1.1b1, =4.1.0, =0.1.0, =10.0.0, =0.1.0, =1.3.3, =17.0.0, =0.1.0a0, =19.0.0, =20.5.1, =21.2.7 and more Source cves: CVE-2024-9902 Source advisory: OSV:GHSA-32P4-GM2C-WMCH...

6.3CVSS6.7AI score0.00248EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2024/11/06 12:31 p.m.4 views

ansible (>=6.0.0 <=7.7.0), ansible-doctor (>=3.1.2 <=3.1.3) +35 more potentially affected by CVE-2024-9902 via ansible-core (>=2.11.0 <=2.14.18)

ansible-core PYPI version =2.11.0, =6.0.0, =3.1.2, =1.1.2, =1.0.2, =1.0.4.1233rc0, =6.0.0, =8.0.0, =1.0.0, =1.4.1, =0.0.1, =0.2.0, =0.4.0 and more Source cves: CVE-2024-9902 Source advisory: OSV:GHSA-32P4-GM2C-WMCH...

6.3CVSS6.9AI score0.00248EPSS
Exploits0
NVD
NVD
added 2024/07/18 5:15 p.m.36 views

CVE-2024-40629

JumpServer is an open-source Privileged Access Management PAM tool that provides DevOps and IT teams with on-demand and secure access to SSH, RDP, Kubernetes, Database and RemoteApp endpoints through a web browser. An attacker can exploit the Ansible playbook to write arbitrary files, leading to...

10CVSS0.01272EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/07/18 12:0 a.m.6 views

PT-2024-5028 · Unknown +2 · Jumpserver +2

Name of the Vulnerable Software and Affected Versions: JumpServer versions prior to 3.10.12 JumpServer versions prior to 4.0.0 Description: The issue is related to the JumpServer Privileged Access Management PAM tool, which provides secure access to various endpoints through a web browser. An...

10CVSS9.9AI score0.01272EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2024/07/18 12:0 a.m.7 views

PT-2024-5027 · Unknown · Jumpserver

Name of the Vulnerable Software and Affected Versions: JumpServer versions prior to 3.10.12 JumpServer versions prior to 4.0.0 Description: JumpServer is an open-source Privileged Access Management PAM tool that provides DevOps and IT teams with on-demand and secure access to SSH, RDP, Kubernetes...

10CVSS9.3AI score0.00861EPSS
Exploits0References12
OSV
OSV
added 2024/05/06 9:50 a.m.3 views

SUSE-SU-2024:1525-1 Security update for SUSE Manager Salt Bundle

This update fixes the following issues: venv-salt-minion: - CVE-2024-22231: Prevent directory traversal when creating syndic cache directory on the master bsc1219430 - CVE-2024-22232: Prevent directory traversal attacks in the master's servefile method bsc1219431 - Convert oscap output to UTF-8 -...

7.7CVSS7.5AI score0.0083EPSS
Exploits0References10
OSV
OSV
added 2024/05/06 9:49 a.m.5 views

SUSE-SU-2024:1518-1 Security update for SUSE Manager Salt Bundle

This update fixes the following issues: venv-salt-minion: - Security issues fixed: CVE-2024-22231: Prevent directory traversal when creating syndic cache directory on the master bsc1219430 CVE-2024-22232: Prevent directory traversal attacks in the master's servefile method bsc1219431 - Bugs fixed...

7.7CVSS7.5AI score0.0083EPSS
Exploits0References10
OSV
OSV
added 2024/05/06 9:49 a.m.6 views

SUSE-SU-2024:1517-1 Security update for SUSE Manager Salt Bundle

This update fixes the following issues: venv-salt-minion: - Security issues fixed: CVE-2024-22231: Prevent directory traversal when creating syndic cache directory on the master bsc1219430 CVE-2024-22232: Prevent directory traversal attacks in the master's servefile method bsc1219431 - Bugs fixed...

7.7CVSS7.5AI score0.0083EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.17 views

Rocky Linux 8 : Rocky Enterprise Software Foundation Ceph Storage 4.1 (RLSA-2020:2231)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2020:2231 advisory. - A flaw was found in the ceph-ansible playbook where it contained hardcoded passwords that were being used as default passwords while deploying Ceph services. A...

9CVSS7.7AI score0.01269EPSS
Exploits1References164
ATTACKERKB
ATTACKERKB
added 2022/07/14 3:15 p.m.6 views

CVE-2022-1662

In convert2rhel, there's an ansible playbook named ansible/run-convert2rhel.yml which passes the Red Hat Subscription Manager user password via the CLI to convert2rhel. This could allow unauthorized local users to view the password via the process list while convert2rhel is running. However, this...

5.5CVSS6.1AI score0.00203EPSS
Exploits0References2
Rows per page
Query Builder