3 matches found
The vulnerability of the Ansible configuration management system, related to the incorrect handling of the “no_log” option, allows a perpetrator to gain unauthorized access to sensitive information.
The vulnerability of the Ansible configuration management system is related to the improper handling of the “nolog” option, which is intended to prevent logging of tasks when they fail. This results in confidential data being recorded in event logs and on the user’s terminal. Exploiting this...
The vulnerability of the Ansible configuration management system, related to the disclosure of confidential data in vvv+ mode, allows a perpetrator to gain unauthorized access to information.
The vulnerability of the Ansible configuration management system is related to the disclosure of confidential data in the vvv+ mode with the nolog option disabled. Exploiting this vulnerability allows a remote attacker to gain unauthorized access to information...
PT-2018-2516
Name of the Vulnerable Software and Affected Versions Ansible versions 2.4 through 2.4.4 Ansible versions 2.5 through 2.5.4 Description The issue is related to the incorrect handling of the no log option in Ansible, which is designed to prevent task logging. When a task fails, sensitive data may ...