Lucene search
K

4 matches found

NVD
NVD
added 2021/05/27 7:15 p.m.26 views

CVE-2020-10698

A flaw was found in Ansible Tower when running jobs. This flaw allows an attacker to access the stdout of the executed jobs which are run from other organizations. Some sensible data can be disclosed. However, critical data should not be disclosed, as it should be protected by the nolog flag when...

3.3CVSS0.00268EPSS
Exploits0References1
CVE
CVE
added 2021/05/27 6:45 p.m.103 views

CVE-2020-10698

Ansible Tower is affected. The vulnerability allows an attacker to read the stdout of jobs executed from other organizations, enabling partial data disclosure. Affected versions: before 3.6.4, before 3.5.6, and before 3.4.6. Root cause involves exposure of run-time job output via the websocket in...

3.3CVSS3.9AI score0.00268EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/05/27 6:45 p.m.27 views

CVE-2020-10698

A flaw was found in Ansible Tower when running jobs. This flaw allows an attacker to access the stdout of the executed jobs which are run from other organizations. Some sensible data can be disclosed. However, critical data should not be disclosed, as it should be protected by the nolog flag when...

3.8AI score0.00268EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2020/04/22 1:24 p.m.12 views

Critical: Red Hat Bug Fix Advisory: Red Hat Ansible Tower 3.5.6-1 - RHEL7 Container

Red Hat Ansible Tower 3.5.6-1 - RHEL7 Container Fixed Tower to allow users to subscribe to playbook output in organizations they do not have RBAC access to via Towers websocket interface CVE-2020-10698 Fixed OAuth2 refresh tokens to properly respect custom expiration settings CVE-2020-10709...

9.8CVSS7AI score0.49739EPSS
Exploits13
Rows per page
Query Builder