Lucene search
K

4 matches found

OSV
OSV
added 2020/03/16 4:15 p.m.3 views

DEBIAN-CVE-2020-1736

A flaw was found in Ansible Engine when a file is moved using atomicmove primitive as the file mode cannot be specified. This sets the destination files world-readable if the destination file does not exist and if the file exists, the file could be changed to have less restrictive permissions...

3.3CVSS6.7AI score0.00401EPSS
Exploits1References1
PyPA
PyPA
added 2020/03/16 4:15 p.m.8 views

PYSEC-2020-10

A flaw was found in Ansible Engine when the module package or service is used and the parameter 'use' is not specified. If a previous task is executed with a malicious user, the module sent can be selected by the attacker using the ansible facts file. All versions in 2.7.x, 2.8.x and 2.9.x branch...

3.9CVSS6.5AI score0.00381EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2020/03/16 4:15 p.m.3 views

UBUNTU-CVE-2020-1736

A flaw was found in Ansible Engine when a file is moved using atomicmove primitive as the file mode cannot be specified. This sets the destination files world-readable if the destination file does not exist and if the file exists, the file could be changed to have less restrictive permissions...

3.3CVSS7AI score0.00401EPSS
Exploits1References3
vulnersOsv
vulnersOsv
added 2019/01/04 7:6 p.m.5 views

ai.foremast.metrics:foremast-spring-boot-15x-starter (>=0.1.8 <=0.1.12), ai.snips:play-mongo-bson_2.12 (>=0.5 <=0.5.1) +5714 more potentially affected by CVE-2018-14718 via com.fasterxml.jackson.core:jackson-databind (>=2.8.0 <=2.8.11.2)

com.fasterxml.jackson.core:jackson-databind MAVEN version =2.8.0, =0.1.8, =0.5, =2.3.0, =1.5.6, =4.2.1, =4.4.1, =1.0.0.RELEASE, =0.4, =0.4, =0.4, =0.4, =0.4, =0.4, =0.4, =0.4, =0.9 and more Source cves: CVE-2018-14718 Source advisory: OSV:GHSA-645P-88QH-W398...

9.8CVSS7.1AI score0.12679EPSS
Exploits0
Rows per page
Query Builder