Lucene search
K

3 matches found

BDU FSTEC
BDU FSTEC
added 2019/03/06 12:0 a.m.5 views

The vulnerability of the Ansible configuration management system, related to the incorrect handling of the “no_log” option, allows a perpetrator to gain unauthorized access to sensitive information.

The vulnerability of the Ansible configuration management system is related to the improper handling of the “nolog” option, which is intended to prevent logging of tasks when they fail. This results in confidential data being recorded in event logs and on the user’s terminal. Exploiting this...

7.5CVSS6.6AI score0.03088EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/03/06 12:0 a.m.6 views

The vulnerability of the Ansible configuration management system, related to the disclosure of confidential data in vvv+ mode, allows a perpetrator to gain unauthorized access to information.

The vulnerability of the Ansible configuration management system is related to the disclosure of confidential data in the vvv+ mode with the nolog option disabled. Exploiting this vulnerability allows a remote attacker to gain unauthorized access to information...

7.5CVSS5.8AI score0.02462EPSS
Exploits0References10Affected Software5
Positive Technologies
Positive Technologies
added 2018/06/08 12:0 a.m.6 views

PT-2018-2516

Name of the Vulnerable Software and Affected Versions Ansible versions 2.4 through 2.4.4 Ansible versions 2.5 through 2.5.4 Description The issue is related to the incorrect handling of the no log option in Ansible, which is designed to prevent task logging. When a task fails, sensitive data may ...

8.2CVSS7.5AI score0.03088EPSS
Exploits0References103
Rows per page
Query Builder