Lucene search
K

9 matches found

RedHat Linux
RedHat Linux
added 3 days ago5 views

dynaconf: jinja2: Dynaconf: Arbitrary code execution via Server-Side Template Injection

A flaw was found in dynaconf, a Python configuration management tool. This Server-Side Template Injection SSTI vulnerability occurs due to unsafe template evaluation in the @Jinja resolver when the jinja2 package is installed. A remote attacker could exploit this by embedding malicious template...

8.1CVSS6.5AI score0.00526EPSS
Exploits1References7
CVE
CVE
added 2026/02/16 10:16 a.m.16 views

CVE-2026-2452

The CVE-2026-2452 issue affects pretix email templates where placeholders are used to inject data. A security bug allowed exfiltration of sensitive information from the system configuration via specially crafted placeholder names (for example {{event.init .code .co_filename}}), enabling an attack...

9CVSS5.6AI score0.00258EPSS
Exploits0References1Affected Software2
Tenable Nessus
Tenable Nessus
added 2024/04/27 12:0 a.m.31 views

RHEL 7 : ansible (RHSA-2019:3789)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2019:3789 advisory. Ansible is a simple model-driven configuration management, multi-node deployment, and remote-task execution system. Ansible works over SSH a...

6.5CVSS6.8AI score0.01759EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2024/04/24 12:0 a.m.24 views

RHEL 7 : ansible (RHSA-2019:3744)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2019:3744 advisory. Ansible is a simple model-driven configuration management, multi-node deployment, and remote-task execution system. Ansible works over SSH a...

6.5CVSS6.8AI score0.01759EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2019/11/07 1:47 p.m.4 views

ansible: unsafe template evaluation of returned module data can lead to information disclosure

A flaw was discovered in the way Ansible templating was implemented, causing the possibility of information disclosure through unexpected variable substitution. By taking advantage of unintended variable substitution the content of any variable may be disclosed...

5.5CVSS7.1AI score0.01759EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/11/06 3:27 p.m.5 views

ansible: unsafe template evaluation of returned module data can lead to information disclosure

A flaw was discovered in the way Ansible templating was implemented, causing the possibility of information disclosure through unexpected variable substitution. By taking advantage of unintended variable substitution the content of any variable may be disclosed...

5.5CVSS7.1AI score0.01759EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2019/07/15 12:0 a.m.28 views

RHEL 7 : ansible (RHSA-2019:1705)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2019:1705 advisory. Ansible is a simple model-driven configuration management, multi-node deployment, and remote-task execution system. Ansible works over SSH and does n...

5.5CVSS6.7AI score0.01759EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2019/07/09 8:45 a.m.6 views

ansible: unsafe template evaluation of returned module data can lead to information disclosure

A flaw was discovered in the way Ansible templating was implemented, causing the possibility of information disclosure through unexpected variable substitution. By taking advantage of unintended variable substitution the content of any variable may be disclosed...

5.5CVSS7.1AI score0.01759EPSS
Exploits0References4
Veracode
Veracode
added 2019/06/10 7:4 a.m.24 views

Information Disclosure

ansible is vulnerable to Information Disclosure. An unsafe template evaluation of returned module data exists, allowing an attacker to read and replace files...

5.4CVSS5.6AI score0.01759EPSS
Exploits0References10Affected Software1
Rows per page
Query Builder