EUVD-2020-0024

Malware in sbrugna...

FreeBSD : py-ansible -- multiple vulnerabilities (e1b77733-a982-442e-8796-a200571bfcf2)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the e1b77733-a982-442e-8796-a200571bfcf2 advisory. - A flaw was found in Ansible Base when using the awsssm connection plugin as garbage collecto...

CVE-2020-25635

A flaw was found in Ansible Base when using the awsssm connection plugin as garbage collector is not happening after playbook run is completed. Files would remain in the bucket exposing the data. This issue affects directly data confidentiality...

CVE-2020-25635

A flaw was found in Ansible Base when using the awsssm connection plugin as garbage collector is not happening after playbook run is completed. Files would remain in the bucket exposing the data. This issue affects directly data confidentiality...

Design/Logic Flaw

A flaw was found in Ansible Base when using the awsssm connection plugin as garbage collector is not happening after playbook run is completed. Files would remain in the bucket exposing the data. This issue affects directly data confidentiality...

CVE-2020-25635

A flaw was found in Ansible Base when using the awsssm connection plugin as garbage collector is not happening after playbook run is completed. Files would remain in the bucket exposing the data. This issue affects directly data confidentiality...

CVE-2020-25635

A flaw was found in Ansible Base when using the awsssm connection plugin as garbage collector is not happening after playbook run is completed. Files would remain in the bucket exposing the data. This issue affects directly data confidentiality...

CVE-2020-25635

A flaw was found in Ansible Base when using the awsssm connection plugin as garbage collector is not happening after playbook run is completed. Files would remain in the bucket exposing the data. This issue affects directly data confidentiality...

CVE-2020-25635

CVE-2020-25635 describes a flaw in Ansible Base where using the aws_ssm connection plugin fails to garbage-collect after a playbook run, leaving files in the bucket and potentially exposing data. The issue directly affects data confidentiality. The connected advisories (e.g., GHSA-F556-49JC-4RVC ...

CVE-2020-25636

A flaw was found in Ansible Base when using the awsssm connection plugin as there is no namespace separation for file transfers. Files are written directly to the root bucket, making possible to have collisions when running multiple ansible processes. This issue affects mainly the service...

CVE-2020-25636

A flaw was found in Ansible Base when using the awsssm connection plugin as there is no namespace separation for file transfers. Files are written directly to the root bucket, making possible to have collisions when running multiple ansible processes. This issue affects mainly the service...

Design/Logic Flaw

A flaw was found in Ansible Base when using the awsssm connection plugin as there is no namespace separation for file transfers. Files are written directly to the root bucket, making possible to have collisions when running multiple ansible processes. This issue affects mainly the service...

CVE-2020-25636

CVE-2020-25636 : A flaw in Ansible Base when using the aws_ssm connection plugin lacks namespace separation for file transfers, causing files to be written directly to the root bucket and potentially colliding across multiple ansible processes. The impact, as described in the sources, is mainly o...

CVE-2020-25636

A flaw was found in Ansible Base when using the awsssm connection plugin as there is no namespace separation for file transfers. Files are written directly to the root bucket, making possible to have collisions when running multiple ansible processes. This issue affects mainly the service...

py-ansible -- multiple vulnerabilities

abeluck reports: A flaw was found in Ansible Base when using the awsssm connection plugin as garbage collector is not happening after playbook run is completed. Files would remain in the bucket exposing the data. This issue affects directly data confidentiality. A flaw was found in Ansible Base...

CVE-2020-25636

A flaw was found in Ansible Base when using the awsssm connection plugin, as there is not a namespace separation for file transfers. Files are written directly to the root bucket, making it possible to have collisions when running multiple Ansible processes. The highest threat from this...