5 matches found
CVE-2021-3532
A flaw was found in Ansible. Confidential information is disclosed in asyncfiles when the user changes the jobdir to a world-readable directory. Any confidential information in an async status file will be readable by a malicious user on that system...
FreeBSD : py-ansible -- data leak vulnerability (f418cd50-561a-49a2-a133-965d03ede72a)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the f418cd50-561a-49a2-a133-965d03ede72a advisory. - A flaw was found in Ansible where the secret information present in asyncfiles are getting disclosed...
CVE-2021-3532
Rejected reason: This CVE is marked as INVALID and not a bug...
CVE-2021-3532
...
CVE-2021-3532
CVE-2021-3532 entry is corroborated by connected documents indicating a data leak in Ansible where secret information in async_files can be disclosed when the jobdir is changed to a world-readable directory. The vulnerability affects Ansible Tower 3.7 and Ansible Automation Platform 1.2, and is d...