Ansible@* Security Vulnerabilities and Issues — Ansible@* CVE List

Lucene search

RedhatAnsible*

3 matches found

CVE•added 2017/11/21 5:29 p.m.•80 views

CVE-2017-7550

A flaw was found in the way Ansible (2.3.x before 2.3.3, and 2.4.x before 2.4.1) passed certain parameters to the jenkins_plugin module. Remote attackers could use this flaw to expose sensitive information from a remote host's logs. This flaw was fixed by not allowing passwords to be specified in t...

9.8CVSS8.9AI score0.00461EPSS

CVE•added 2017/06/07 8:29 p.m.•67 views

CVE-2015-6240

The chroot, jail, and zone connection plugins in ansible before 1.9.2 allow local users to escape a restricted environment via a symlink attack.

7.8CVSS7.2AI score0.00029EPSS

CVE•added 2017/06/08 6:29 p.m.•41 views

CVE-2014-3498

The user module in ansible before 1.6.6 allows remote authenticated users to execute arbitrary commands.

8.8CVSS8.6AI score0.00548EPSS