Lucene search
Ansible Security Vulnerabilities - 2013
cve
runner/connection_plugins/ssh.py in Ansible before 1.2.3, when using ControlPersist, allows local users to redirect a ssh session via a symlink attack on a socket file with a predictable name in /tmp/.
7AI Score
0.0004EPSS
2013-09-16 07:14 PM
37
cve
lib/ansible/playbook/init .py in Ansible 1.2.x before 1.2.3, when playbook does not run due to an error, allows local users to overwrite arbitrary files via a symlink attack on a retry file with a predictable name in /var/tmp/ansible/.
7.1AI Score
0.0004EPSS
2013-09-16 07:14 PM
52