Search CVE reports
1 – 5 of 5 results
A privilege escalation flaw was found in the Ansible Automation Platform. This flaw allows a remote authenticated user with 'change user' permissions to modify the account settings of the superuser account and also remove...
3 affected packages
ansible, ansible-core, ansible-base
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ansible | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| ansible-core | Needs evaluation | Needs evaluation | Not in release | Not in release |
| ansible-base | Not in release | Not in release | Not in release | Not in release |
Some fixes available 2 of 13
A flaw was found in Ansible Engine's ansible-connection module, where sensitive information such as the Ansible user credentials is disclosed by default in the traceback error message. The highest threat from this vulnerability is...
3 affected packages
ansible, ansible-base, ansible-core
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ansible | Vulnerable | Fixed | Fixed | Not affected |
| ansible-base | Not in release | Not in release | Not in release | Not in release |
| ansible-core | Not affected | Not affected | Not in release | Not in release |
Some fixes available 4 of 15
A flaw was found in Ansible, where a user's controller is vulnerable to template injection. This issue can occur through facts used in the template if the user is trying to put templates in multi-line YAML strings and the facts...
3 affected packages
ansible, ansible-base, ansible-core
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ansible | Vulnerable | Fixed | Fixed | Fixed |
| ansible-base | Not in release | Not in release | Not in release | Not in release |
| ansible-core | Not affected | Not affected | Not in release | Not in release |
Rejected reason: This vulnerability does not meet the criteria for a security vulnerability
3 affected packages
ansible, ansible-base, ansible-core
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ansible | — | Vulnerable | Vulnerable | Vulnerable |
| ansible-base | — | Not in release | Not in release | Not in release |
| ansible-core | — | Not affected | Not in release | Not in release |
Rejected reason: This CVE is marked as INVALID and not a bug
3 affected packages
ansible-core, ansible, ansible-base
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ansible-core | — | Not affected | Not in release | Not in release |
| ansible | — | Vulnerable | Vulnerable | Vulnerable |
| ansible-base | — | Not in release | Not in release | Not in release |