594 matches found
EUVD-2021-7599
Malicious code in bioql PyPI...
EUVD-2021-7600
Malicious code in bioql PyPI...
EUVD-2021-7596
Malicious code in bioql PyPI...
EUVD-2022-3037
Malicious code in bioql PyPI...
EUVD-2021-7691
Malicious code in bioql PyPI...
EUVD-2024-0977
Malicious code in bioql PyPI...
EUVD-2023-36713
Malicious code in bioql PyPI...
EUVD-2021-7601
Malicious code in bioql PyPI...
EUVD-2021-33992
Malicious code in bioql PyPI...
EUVD-2022-4738
Malicious code in bioql PyPI...
A flaw was found in Ansible in the amazon.aws collection when using the tower_callback parameter from the amazon.aws.ec2_instance module. This flaw allows an attacker to take advantage of this issue as the module is handling the parameter insecurely, leading to the password leaking in the logs.
...
K000153161: Ansible Tower vulnerability CVE-2019-19340
Security Advisory Description A flaw was found in Ansible Tower, versions 3.6.x before 3.6.2 and 3.5.x before 3.5.3, where enabling RabbitMQ manager by setting it with '-e rabbitmqenablemanager=true' exposes the RabbitMQ management interface publicly, as expected. If the default admin user is sti...
OESA-2025-2065 ansible security update
\ Security Fixes: A flaw was found in Ansible Engine affecting Ansible Engine versions 2.7.x before 2.7.17 and 2.8.x before 2.8.11 and 2.9.x before 2.9.7 as well as Ansible Tower before and including versions 3.4.5 and 3.5.5 and 3.6.3 when using modules which decrypts vault files such as assemble...
MAL-2025-36484 Malicious code in test-mlw2-tower-narre (npm)
The package test-mlw2-tower-narre was found to contain malicious code...
Malicious code in test-mlw2-tower-narre (npm)
The package test-mlw2-tower-narre was found to contain malicious code...
ROS-20250812-07
A vulnerability in the amazon.aws.ec2instance module of Ansible configuration management is related to an error in the handling of the of the towercallback parameter. Exploitation of the vulnerability allows an attacker acting remotely to gain access sensitive data...
Linux Distros Unpatched Vulnerability : CVE-2022-3697
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in Ansible in the amazon.aws collection when using the towercallback parameter from the amazon.aws.ec2instance module. This flaw allows an...
Linux Distros Unpatched Vulnerability : CVE-2020-1746
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the Ansible Engine affecting Ansible Engine versions 2.7.x before 2.7.17 and 2.8.x before 2.8.11 and 2.9.x before 2.9.7 as well as Ansible...
Linux Distros Unpatched Vulnerability : CVE-2019-14858
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in Ansible engine 2.x up to 2.8 and Ansible tower 3.x up to 3.5. When a module has an argumentspec with sub parameters marked as nolog...
Linux Distros Unpatched Vulnerability : CVE-2020-10685
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in Ansible Engine affecting Ansible Engine versions 2.7.x before 2.7.17 and 2.8.x before 2.8.11 and 2.9.x before 2.9.7 as well as Ansible Tower...