Lucene search
K

158 matches found

Tenable Nessus
Tenable Nessus
added 2024/09/27 12:0 a.m.22 views

RHEL 8 / 9 : Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update (Moderate) (RHSA-2024:7312)

The remote Redhat Enterprise Linux 8 / 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:7312 advisory. Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT...

6.5CVSS6.8AI score0.01176EPSS
Exploits1References9
RedHat Linux
RedHat Linux
added 2024/09/18 4:7 p.m.65 views

Moderate: Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update

An update is now available for Red Hat Ansible Automation Platform 2.4 Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

9.8CVSS6.8AI score0.01952EPSS
Exploits1References5
NVD
NVD
added 2024/09/12 5:15 p.m.34 views

CVE-2024-6840

An improper authorization flaw exists in the Ansible Automation Controller. This flaw allows an attacker using the k8S API server to send an HTTP request with a service account token mounted via automountServiceAccountToken: true, resulting in privilege escalation to a service account...

6.6CVSS0.00428EPSS
Exploits0References3
Prion
Prion
added 2024/09/12 5:15 p.m.15 views

CVE-2024-6840

An improper authorization flaw exists in the Ansible Automation Controller. This flaw allows an attacker using the k8S API server to send an HTTP request with a service account token mounted via automountServiceAccountToken: true, resulting in privilege escalation to a service account...

0.00428EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/09/12 4:35 p.m.45 views

CVE-2024-6840 Automation-controller: gain access to the k8s api server via job execution with container group

An improper authorization flaw exists in the Ansible Automation Controller. This flaw allows an attacker using the k8S API server to send an HTTP request with a service account token mounted via automountServiceAccountToken: true, resulting in privilege escalation to a service account...

6.6CVSS0.00428EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/09/12 4:35 p.m.18 views

CVE-2024-6840 Automation-controller: gain access to the k8s api server via job execution with container group

An improper authorization flaw exists in the Ansible Automation Controller. This flaw allows an attacker using the k8S API server to send an HTTP request with a service account token mounted via automountServiceAccountToken: true, resulting in privilege escalation to a service account...

6.6CVSS7AI score0.00428EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/09/09 12:0 a.m.32 views

RHEL 8 / 9 : Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update (Moderate) (RHSA-2024:6428)

The remote Redhat Enterprise Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:6428 advisory. Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT...

9.8CVSS6.8AI score0.28637EPSS
Exploits2References28
RedHat Linux
RedHat Linux
added 2024/09/05 2:13 p.m.4 views

automation-controller: Gain access to the k8s API server via job execution with Container Group

An improper authorization flaw exists in the Ansible Automation Controller. This flaw allows an attacker using the k8S API server to send an HTTP request with a service account token mounted via automountServiceAccountToken: true, resulting in privilege escalation to a service account...

6.6CVSS5.8AI score0.00428EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/09/05 2:13 p.m.52 views

Moderate: Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update

An update is now available for Red Hat Ansible Automation Platform 2.4 Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

9.8CVSS6.7AI score0.28637EPSS
Exploits2References13
RedHat Linux
RedHat Linux
added 2024/07/12 1:43 a.m.39 views

Moderate: Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update

An update is now available for Red Hat Ansible Automation Platform 2.4 Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

6.8CVSS6.6AI score0.0098EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/07/12 12:0 a.m.30 views

RHEL 8 / 9 : Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update (Moderate) (RHSA-2024:4522)

The remote Redhat Enterprise Linux 8 / 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:4522 advisory. Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT...

6.8CVSS6.6AI score0.0098EPSS
Exploits1References9
RedHat Linux
RedHat Linux
added 2024/06/10 6:41 p.m.90 views

Moderate: Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update

An update is now available for Red Hat Ansible Automation Platform 2.4 Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

8.1CVSS7.3AI score0.91969EPSS
Exploits5References22
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.85 views

RHEL 8 / 9 : Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update (Moderate) (RHSA-2023:6158)

The remote Redhat Enterprise Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:6158 advisory. Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT...

8.1CVSS7AI score0.01236EPSS
Exploits0References7
NVD
NVD
added 2024/03/12 8:15 a.m.24 views

CVE-2024-27121

Path traversal vulnerability exists in Machine Automation Controller NJ Series and Machine Automation Controller NX Series. An arbitrary file in the affected product may be accessed or arbitrary code may be executed by processing a specially crafted request sent from a remote attacker with an...

7.2CVSS7AI score0.0088EPSS
Exploits0References3
Prion
Prion
added 2024/03/12 8:15 a.m.24 views

Path traversal

Path traversal vulnerability exists in Machine Automation Controller NJ Series and Machine Automation Controller NX Series. An arbitrary file in the affected product may be accessed or arbitrary code may be executed by processing a specially crafted request sent from a remote attacker with an...

7.3AI score0.0088EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/03/12 7:55 a.m.30 views

CVE-2024-27121

Path traversal vulnerability exists in Machine Automation Controller NJ Series and Machine Automation Controller NX Series. An arbitrary file in the affected product may be accessed or arbitrary code may be executed by processing a specially crafted request sent from a remote attacker with an...

7.2AI score0.0088EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/03/12 7:55 a.m.19 views

CVE-2024-27121

Path traversal vulnerability exists in Machine Automation Controller NJ Series and Machine Automation Controller NX Series. An arbitrary file in the affected product may be accessed or arbitrary code may be executed by processing a specially crafted request sent from a remote attacker with an...

7.3AI score0.0088EPSS
Exploits0References3
CVE
CVE
added 2024/03/12 7:55 a.m.79 views

CVE-2024-27121

The CVE-2024-27121 issue affects Omron Machine Automation Controller NJ Series and NX Series. A path traversal vulnerability could allow an attacker with administrative privileges to access arbitrary files or execute code by processing a specially crafted request sent remotely. The vendor notes m...

7.2CVSS7.2AI score0.0088EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/03/04 8:48 p.m.53 views

Moderate: Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Container Release Security and Bug Fix Update

An update is now available for Red Hat Ansible Automation Platform 2.4 Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

5.5CVSS6.4AI score0.00503EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/02/09 12:0 a.m.4 views

PT-2024-37897 · Ansible · Ansible Automation Controller

Name of the Vulnerable Software and Affected Versions: Ansible Automation Controller affected versions not specified Description: An improper authorization flaw exists in the Ansible Automation Controller, allowing an attacker using the k8S API server to send an HTTP request with a service accoun...

6.6CVSS6.6AI score0.00428EPSS
Exploits0References8
Rows per page
Query Builder