22 matches found
ansible-core-2.20-2.20.6-1.1 on GA media (moderate)
ansible-core-2.20-2.20.6-1.1 on GA media Announcement ID: openSUSE-SU-2026:10945-1 Rating: moderate Cross-References: CVE-2023-5115 CVE-2023-5764 CVE-2024-0690 CVE-2024-11079 CVE-2024-8775 CVE-2024-9902 CVSS scores: CVE-2023-5115 SUSE : 6.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:H/A:N CVE-2023-57...
Azure Linux 3.0 Security Update: ansible (CVE-2024-9902)
The version of ansible installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-9902 advisory. - A flaw was found in Ansible. The ansible-core user module can allow an unprivileged user to silently create ...
CBL Mariner 2.0 Security Update: ansible (CVE-2024-9902)
The version of ansible installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-9902 advisory. - A flaw was found in Ansible. The ansible-core user module can allow an unprivileged user to silently create ...
CVE-2024-9902 affecting package ansible for versions less than 2.17.11-1
CVE-2024-9902 affecting package ansible for versions less than 2.17.11-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-9902 affecting package ansible for versions less than 2.14.18-1
CVE-2024-9902 affecting package ansible for versions less than 2.14.18-1. An upgraded version of the package is available that resolves this issue...
TencentOS Server 4: ansible (TSSA-2024:1037)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:1037 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
Medium: ansible-core
Issue Overview: A flaw was found in Ansible. The ansible-core user module can allow an unprivileged user to silently create or replace the contents of any file on any system path and take ownership of it when a privileged user executes the user module against the unprivileged user's home director...
Mageia: Security Advisory (MGASA-2025-0052)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 3963-1] ansible security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3963-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès November 23, 2024 https://wiki.debian.org/LTS -...
Debian dla-3963 : ansible - security update
The remote Debian 11 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-3963 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3963-1 [email protected]...
Moderate: Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Product Release Update
An update is now available for Red Hat Ansible Automation Platform 2.5 Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
ansible-core-2.16-2.16.13-1.1 on GA media (moderate)
ansible-core-2.16-2.16.13-1.1 on GA media Announcement ID: openSUSE-SU-2024:14499-1 Rating: moderate Cross-References: CVE-2024-8775 CVE-2024-9902 CVSS scores: CVE-2024-8775 SUSE : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVE-2024-9902 SUSE : 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A...
Moderate: Red Hat Security Advisory: Red Hat Ansible Automation Platform Execution Environments Container Release Update
An update is now available for Red Hat Ansible Automation Platform Execution Environments Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to...
ansible (>=10.0.0a1 <=10.7.0), ansible-playbook-grapher (>=2.3.0 <=2.5.0) +24 more potentially affected by CVE-2024-9902 via ansible-core (>=2.17.14 <=2.17.4)
ansible-core PYPI version =2.17.14, =10.0.0a1, =2.3.0, =0.2.1, =2.1.1b1, =4.1.0, =0.1.0, =10.0.0, =0.1.0, =1.3.3, =17.0.0, =0.1.0a0, =19.0.0, =20.5.1, =21.2.7 and more Source cves: CVE-2024-9902 Source advisory: OSV:GHSA-32P4-GM2C-WMCH...
chainedci (=1.5.76) potentially affected by CVE-2024-9902 via ansible-core (=2.16.1)
ansible-core PYPI version =2.16.1 is affected by a known vulnerability. The following packages have a transitive dependency on ansible-core and may be impacted: - chainedci =1.5.76 Source cves: CVE-2024-9902 Source advisory: OSV:GHSA-32P4-GM2C-WMCH...
agsekit (>=0.0.1 <=1.7.1), ansible (>=8.0.0 <=8.7.0) +17 more potentially affected by CVE-2024-9902 via ansible-core (>=2.15.1 <=2.15.13)
ansible-core PYPI version =2.15.1, =0.0.1, =8.0.0, =1.1.7, =1.5.37, =0.0.6, =0.1.0, =3.7.4, =0.1.0, =0.2.0, =0.1.0, =0.1.6 - netdevops-project =0.1.0 and more Source cves: CVE-2024-9902 Source advisory: OSV:GHSA-32P4-GM2C-WMCH...
ansible (>=6.0.0 <=7.7.0), ansible-doctor (>=3.1.2 <=3.1.3) +35 more potentially affected by CVE-2024-9902 via ansible-core (>=2.11.0 <=2.14.18)
ansible-core PYPI version =2.11.0, =6.0.0, =3.1.2, =1.1.2, =1.0.2, =1.0.4.1233rc0, =6.0.0, =8.0.0, =1.0.0, =1.4.1, =0.0.1, =0.2.0, =0.4.0 and more Source cves: CVE-2024-9902 Source advisory: SNYK:PYTHON-ANSIBLECORE-8349549...
ansible (>=6.0.0 <=7.7.0), ansible-doctor (>=3.1.2 <=3.1.3) +35 more potentially affected by CVE-2024-9902 via ansible-core (>=2.11.0 <=2.14.18)
ansible-core PYPI version =2.11.0, =6.0.0, =3.1.2, =1.1.2, =1.0.2, =1.0.4.1233rc0, =6.0.0, =8.0.0, =1.0.0, =1.4.1, =0.0.1, =0.2.0, =0.4.0 and more Source cves: CVE-2024-9902 Source advisory: OSV:GHSA-32P4-GM2C-WMCH...
CVE-2024-9902
A flaw was found in Ansible. The ansible-core user module can allow an unprivileged user to silently create or replace the contents of any file on any system path and take ownership of it when a privileged user executes the user module against the unprivileged user's home directory. If the...
CVE-2024-9902
creationtimestamp| type| source ---|---|--- 2024-11-06 09:58:59+00:00| seen| https://infosec.exchange/users/cve/statuses/113435419556428345 2024-11-06 11:39:12+00:00| seen| https://t.me/cvedetector/10000 2025-02-25 20:22:58+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/5372...