| Max CVSS | 3.7 | Min CVSS | 1.9 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-1733 | 3.7 |
A race condition flaw was found in Ansible Engine 2.7.17 and prior, 2.8.9 and prior, 2.9.6 and prior when running a playbook with an unprivileged become user. When Ansible needs to run a module with become user, the temporary directory is created in
|
25-04-2022 - 17:37 | 11-03-2020 - 19:15 | |
| CVE-2019-14846 | 2.1 |
In Ansible, all Ansible Engine versions up to ansible-engine 2.8.5, ansible-engine 2.7.13, ansible-engine 2.6.19, were logging at the DEBUG level which lead to a disclosure of credentials if a plugin used a library that logged credentials at the DEBU
|
22-04-2022 - 19:56 | 08-10-2019 - 19:15 | |
| CVE-2020-1740 | 1.9 |
A flaw was found in Ansible Engine when using Ansible Vault for editing encrypted files. When a user executes "ansible-vault edit", another user on the same computer can read the old and new secret, as it is created in a temporary file with mkstemp a
|
05-04-2022 - 15:01 | 16-03-2020 - 16:15 | |
| CVE-2020-1739 | 3.3 |
A flaw was found in Ansible 2.7.16 and prior, 2.8.8 and prior, and 2.9.5 and prior when a password is set with the argument "password" of svn module, it is used on svn command line, disclosing to other users within the same node. An attacker could ta
|
01-04-2022 - 20:19 | 12-03-2020 - 18:15 |