Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-0019

Malware in sbrugna...

7.9CVSS7.8AI score0.00345EPSS
Exploits0References25
VulnCheck KEV
VulnCheck KEV
added 2024/05/10 12:0 a.m.3 views

VulnCheck KEV: CVE-2020-10684

A flaw was found in Ansible Engine, all versions 2.7.x, 2.8.x and 2.9.x prior to 2.7.17, 2.8.9 and 2.9.6 respectively, when using ansiblefacts as a subkey of itself and promoting it to a variable when inject is enabled, overwriting the ansiblefacts after the clean. An attacker could take...

7.9CVSS6.9AI score0.00345EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2020/04/09 10:37 a.m.36 views

CVE-2020-10684

A flaw was found in the Ansible Engine. When using ansiblefacts as a subkey of itself, and promoting it to a variable when injecting is enabled, overwriting the ansiblefacts after the clean, an attacker could take advantage of this by altering the ansiblefacts leading to privilege escalation or...

7.9CVSS2.6AI score0.00345EPSS
Exploits0References3
OSV
OSV
added 2020/03/24 2:15 p.m.2 views

UBUNTU-CVE-2020-10684

A flaw was found in Ansible Engine, all versions 2.7.x, 2.8.x and 2.9.x prior to 2.7.17, 2.8.9 and 2.9.6 respectively, when using ansiblefacts as a subkey of itself and promoting it to a variable when inject is enabled, overwriting the ansiblefacts after the clean. An attacker could take advantag...

7.9CVSS6.9AI score0.00345EPSS
Exploits0References4
Prion
Prion
added 2020/03/24 2:15 p.m.23 views

Code injection

A flaw was found in Ansible Engine, all versions 2.7.x, 2.8.x and 2.9.x prior to 2.7.17, 2.8.9 and 2.9.6 respectively, when using ansiblefacts as a subkey of itself and promoting it to a variable when inject is enabled, overwriting the ansiblefacts after the clean. An attacker could take advantag...

3.6CVSS7.3AI score0.00345EPSS
Exploits0References6Affected Software5
Veracode
Veracode
added 2020/02/28 5:0 a.m.33 views

Remote Code Execution (RCE)

ansible is vulnerable to remote code execution. The vulnerability exists as the package and service modules allows the ansiblefacts'pkgmgr' and ansiblefacts'servicemgr' facts to be set to a module name such as ansiblecollections.namespace.name./tmp/reverse-shell, allowing remote code execution on...

3.9CVSS4.4AI score0.00381EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder