Lucene search
K

59 matches found

CNNVD
CNNVD
added 2023/07/12 12:0 a.m.6 views

Jenkins Plugin Sumologic Publisher 跨站请求伪造漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...

8.8CVSS7.9AI score0.00469EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/07/12 12:0 a.m.4 views

Jenkins Plugin Sumologic Publisher 安全漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...

6.5CVSS6.5AI score0.00454EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:9 a.m.4 views

SUSE CVE-2019-14864

Ansible, versions 2.9.x before 2.9.1, 2.8.x before 2.8.7 and Ansible versions 2.7.x before 2.7.15, is not respecting the flag nolog set it to True when Sumologic and Splunk callback plugins are used send tasks results events to collectors. This would discloses and collects any sensitive data...

6.5CVSS9.2AI score0.01857EPSS
Exploits1References7
Kitploit
Kitploit
added 2022/06/06 12:30 p.m.20 views

AWS-Threat-Simulation-and-Detection - Playing Around With Stratus Red Team (Cloud Attack Simulation Tool) And SumoLogic

This repository is a documentation of my adventures with Stratus Red Team - a tool for adversary emulation for the cloud. Stratus Red Team is "Atomic Red Team for the cloud, allowing to emulate offensive attack techniques in a granular and self-contained manner. We run the attacks covered in the...

7.3AI score
Exploits0References20
BDU FSTEC
BDU FSTEC
added 2020/07/15 12:0 a.m.4 views

The vulnerabilities of Splunk and Sumologic modules in the configuration management system Ansible, which allow a hacker to gain unauthorized access to protected information.

The vulnerability of Splunk and Sumologic modules in the Ansible configuration management system is related to the absence of the “nolog” flag. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

6.8CVSS6.6AI score0.01857EPSS
Exploits1References12Affected Software8
RedHat Linux
RedHat Linux
added 2020/06/19 1:39 a.m.34 views

Moderate: Red Hat Security Advisory: security update - Red Hat Ansible Tower 3.7.1-1 - RHEL7 Container

Red Hat Ansible Tower 3.7.1-1 - RHEL7 Container Updated rsyslog integration to not write world-readable configuration files CVE-2020-10782 Updated the included foreman/satellite inventory plugin to add the hostfilters and wantansiblesshhost options Updated Foreman/Satellite inventory to properly...

6.5CVSS6.6AI score0.00294EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/04/14 12:0 a.m.41 views

openSUSE Security Update : ansible (openSUSE-2020-513)

This update for ansible to version 2.9.6 fixes the following issues : Security issues fixed : - CVE-2019-14904: Fixed a vulnerability in solariszone module via crafted solaris zone boo1157968. - CVE-2019-14905: Fixed an issue where malicious code could craft filename in nxosfilecopy module...

7.8CVSS6.3AI score0.01857EPSS
Exploits2References18
OpenVAS
OpenVAS
added 2020/04/13 12:0 a.m.32 views

openSUSE: Security Advisory for ansible (openSUSE-SU-2020:0513-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS6.9AI score0.01857EPSS
Exploits2References2
OPENSUSE Linux
OPENSUSE Linux
added 2020/04/12 12:0 a.m.92 views

Security update for ansible (moderate)

openSUSE Security Update: Security update for ansible Announcement ID: openSUSE-SU-2020:0513-1 Rating: moderate References: 1137479 1142542 1142690 1144453 1153452 1154231 1154232 1154830 1157968 1157969 Cross-References: CVE-2019-10206 CVE-2019-10217 CVE-2019-14846 CVE-2019-14856 CVE-2019-14858...

7.8CVSS6.8AI score0.01857EPSS
Exploits2References10
OSV
OSV
added 2020/02/26 7:54 p.m.2 views

GHSA-3M93-M4Q6-MC6V Inclusion of Sensitive Information in Log Files and Improper Output Neutralization for Logs in Ansible

Ansible, versions 2.9.x before 2.9.1, 2.8.x before 2.8.7 and Ansible versions 2.7.x before 2.7.15, is not respecting the flag nolog set it to True when Sumologic and Splunk callback plugins are used send tasks results events to collectors. This would discloses and collects any sensitive data...

6.5CVSS6.8AI score0.01857EPSS
Exploits1References17
Github Security Blog
Github Security Blog
added 2020/02/26 7:54 p.m.68 views

Inclusion of Sensitive Information in Log Files and Improper Output Neutralization for Logs in Ansible

Ansible, versions 2.9.x before 2.9.1, 2.8.x before 2.8.7 and Ansible versions 2.7.x before 2.7.15, is not respecting the flag nolog set it to True when Sumologic and Splunk callback plugins are used send tasks results events to collectors. This would discloses and collects any sensitive data...

6.5CVSS2.2AI score0.01857EPSS
Exploits1References16Affected Software1
OSV
OSV
added 2020/01/02 3:15 p.m.2 views

ALPINE-CVE-2019-14864

Ansible, versions 2.9.x before 2.9.1, 2.8.x before 2.8.7 and Ansible versions 2.7.x before 2.7.15, is not respecting the flag nolog set it to True when Sumologic and Splunk callback plugins are used send tasks results events to collectors. This would discloses and collects any sensitive data...

6.5CVSS6.8AI score0.01857EPSS
Exploits1References1
NVD
NVD
added 2020/01/02 3:15 p.m.23 views

CVE-2019-14864

Ansible, versions 2.9.x before 2.9.1, 2.8.x before 2.8.7 and Ansible versions 2.7.x before 2.7.15, is not respecting the flag nolog set it to True when Sumologic and Splunk callback plugins are used send tasks results events to collectors. This would discloses and collects any sensitive data...

6.5CVSS6AI score0.01857EPSS
Exploits1References6
OSV
OSV
added 2020/01/02 3:15 p.m.27 views

CVE-2019-14864

Ansible, versions 2.9.x before 2.9.1, 2.8.x before 2.8.7 and Ansible versions 2.7.x before 2.7.15, is not respecting the flag nolog set it to True when Sumologic and Splunk callback plugins are used send tasks results events to collectors. This would discloses and collects any sensitive data...

6.5CVSS6.4AI score0.01857EPSS
Exploits1References6
OSV
OSV
added 2020/01/02 3:15 p.m.1 views

DEBIAN-CVE-2019-14864

Ansible, versions 2.9.x before 2.9.1, 2.8.x before 2.8.7 and Ansible versions 2.7.x before 2.7.15, is not respecting the flag nolog set it to True when Sumologic and Splunk callback plugins are used send tasks results events to collectors. This would discloses and collects any sensitive data...

6.5CVSS6.7AI score0.01857EPSS
Exploits1References1
Prion
Prion
added 2020/01/02 3:15 p.m.24 views

Design/Logic Flaw

Ansible, versions 2.9.x before 2.9.1, 2.8.x before 2.8.7 and Ansible versions 2.7.x before 2.7.15, is not respecting the flag nolog set it to True when Sumologic and Splunk callback plugins are used send tasks results events to collectors. This would discloses and collects any sensitive data...

4CVSS6.4AI score0.01857EPSS
Exploits1References6Affected Software8
OSV
OSV
added 2020/01/02 3:15 p.m.4 views

PYSEC-2020-160

Ansible, versions 2.9.x before 2.9.1, 2.8.x before 2.8.7 and Ansible versions 2.7.x before 2.7.15, is not respecting the flag nolog set it to True when Sumologic and Splunk callback plugins are used send tasks results events to collectors. This would discloses and collects any sensitive data...

6.5CVSS6.9AI score0.01857EPSS
Exploits1References6
PyPA
PyPA
added 2020/01/02 3:15 p.m.5 views

PYSEC-2020-160

Ansible, versions 2.9.x before 2.9.1, 2.8.x before 2.8.7 and Ansible versions 2.7.x before 2.7.15, is not respecting the flag nolog set it to True when Sumologic and Splunk callback plugins are used send tasks results events to collectors. This would discloses and collects any sensitive data...

6.5CVSS6.8AI score0.01857EPSS
Exploits1References6Affected Software1
UbuntuCve
UbuntuCve
added 2020/01/02 3:15 p.m.25 views

CVE-2019-14864

Ansible, versions 2.9.x before 2.9.1, 2.8.x before 2.8.7 and Ansible versions 2.7.x before 2.7.15, is not respecting the flag nolog set it to True when Sumologic and Splunk callback plugins are used send tasks results events to collectors. This would discloses and collects any sensitive data...

6.5CVSS6.8AI score0.01857EPSS
Exploits1References3
OSV
OSV
added 2020/01/02 3:15 p.m.3 views

PYSEC-2020-179

Ansible, versions 2.9.x before 2.9.1, 2.8.x before 2.8.7 and Ansible versions 2.7.x before 2.7.15, is not respecting the flag nolog set it to True when Sumologic and Splunk callback plugins are used send tasks results events to collectors. This would discloses and collects any sensitive data...

6.5CVSS7.1AI score0.01857EPSS
Exploits1References5
Rows per page
Query Builder