Lucene search
Veracode Vulnerability DatabaseVERACODE:29491HistoryFeb 25, 2021 - 6:28 a.m.
Information Disclosure
2021-02-2506:28:38
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
EPSS
0.001
Percentile
17.7%
ansible is vulnerable to information disclosure. The no_log feature is not enabled by default and confidential information such as the authkey and privkey are logged to the console.
References
access.redhat.com/errata/RHSA-2021:0663
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=1914774
github.com/ansible-collections/community.general/pull/1635,
github.com/ansible/ansible/blob/v2.9.18/changelogs/CHANGELOG-v2.9.rst#security-fixes,
github.com/ansible/ansible/pull/73188
lists.fedoraproject.org/archives/list/[email protected]/message/FUQ2QKAQA5OW2TY3ACZZMFIAJ2EQTG37/
lists.fedoraproject.org/archives/list/[email protected]/message/HIU7QZUV73U6ZQ65VJWSFBTCALVXLH55/
Related
redhatcve
redhatcve
CVE-2021-20178
2021-01-11 18:15:53
osv
osv
Insertion of Sensitive Information into Log File in ansible
2021-06-01 21:53:29
PYSEC-2021-106
2021-05-26 12:15:00
CVE-2021-20178
2021-05-26 12:15:18
cve
cve
CVE-2021-20178
2021-05-26 12:15:18
cbl_mariner
cbl_mariner
CVE-2021-20178 affecting package ansible 2.9.12-1
2021-07-08 21:56:43
nvd
nvd
CVE-2021-20178
2021-05-26 12:15:18
cvelist
cvelist
CVE-2021-20178
2021-05-26 00:00:00
ubuntucve
ubuntucve
CVE-2021-20178
2021-05-26 00:00:00
github
github
Insertion of Sensitive Information into Log File in ansible
2021-06-01 21:53:29
prion
prion
Security feature bypass
2021-05-26 12:15:00
debiancve
debiancve
CVE-2021-20178
2021-05-26 12:15:18
archlinux
archlinux
[ASA-202102-9] ansible: information disclosure
2021-02-06 00:00:00
mageia
mageia
Updated ansible packages fix security vulnerability
2021-03-12 04:25:47
Updated ansible packages fix security vulnerability
2021-03-12 04:25:47
nessus
nessus
Amazon Linux 2 : ansible (ALAS-2021-1613)
2021-03-19 00:00:00
Fedora 33 : ansible (2021-e9478617ae)
2021-03-02 00:00:00
Amazon Linux 2 : ansible (ALASANSIBLE2-2023-004)
2023-09-27 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2021-0131)
2022-01-28 00:00:00
Fedora: Security Advisory for ansible (FEDORA-2021-e9478617ae)
2021-03-02 00:00:00
Fedora: Security Advisory for ansible (FEDORA-2021-9a0903469c)
2021-03-02 00:00:00
amazon
amazon
Medium: ansible
2021-03-18 01:13:00
fedora
fedora
[SECURITY] Fedora 32 Update: ansible-2.9.18-1.fc32
2021-03-01 17:06:17
[SECURITY] Fedora 33 Update: ansible-2.9.18-1.fc33
2021-03-01 17:02:27
redhat
redhat
rosalinux
rosalinux
Advisory ROSA-SA-2024-2334
2024-01-30 08:40:29
photon
photon
Critical Photon OS Security Update - PHSA-2022-0528
2022-10-18 00:00:00
suse
suse
Important for SUSE Manager Client Tools (important)
2022-09-08 00:00:00
Security update for ansible (important)
2022-03-16 00:00:00
debian
debian
[SECURITY] [DLA 3695-1] ansible security update
2023-12-28 17:44:01