CVE-2017-7481

Опубликовано: 19 июл. 2018

Источник: nvd

CVSS3: 5.3

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

Ansible before versions 2.3.1.0 and 2.4.0.0 fails to properly mark lookup-plugin results as unsafe. If an attacker could control the results of lookup() calls, they could inject Unicode strings to be parsed by the jinja2 templating system, resulting in code execution. By default, the jinja2 templating language is now marked as 'unsafe' and is not evaluated.

Ссылки

http://www.securityfocus.com/bid/98492
Third Party Advisory
VDB Entry
https://access.redhat.com/errata/RHSA-2017:1244
Vendor Advisory
https://access.redhat.com/errata/RHSA-2017:1334
Vendor Advisory
https://access.redhat.com/errata/RHSA-2017:1476
Vendor Advisory
https://access.redhat.com/errata/RHSA-2017:1499
Vendor Advisory
https://access.redhat.com/errata/RHSA-2017:1599
Vendor Advisory
https://access.redhat.com/errata/RHSA-2017:2524
Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7481
Issue Tracking
Patch
Vendor Advisory
https://github.com/ansible/ansible/commit/ed56f51f185a1ffd7ea57130d260098686fcc7c2
Patch
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2021/01/msg00023.html
Mailing List
Third Party Advisory
https://usn.ubuntu.com/4072-1/
Third Party Advisory
http://www.securityfocus.com/bid/98492
Third Party Advisory
VDB Entry
https://access.redhat.com/errata/RHSA-2017:1244
Vendor Advisory
https://access.redhat.com/errata/RHSA-2017:1334
Vendor Advisory
https://access.redhat.com/errata/RHSA-2017:1476
Vendor Advisory
https://access.redhat.com/errata/RHSA-2017:1499
Vendor Advisory
https://access.redhat.com/errata/RHSA-2017:1599
Vendor Advisory
https://access.redhat.com/errata/RHSA-2017:2524
Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7481
Issue Tracking
Patch
Vendor Advisory
https://github.com/ansible/ansible/commit/ed56f51f185a1ffd7ea57130d260098686fcc7c2
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:redhat:openshift_container_platform:3.3:*:*:*:*:*:*:*

cpe:2.3:a:redhat:openshift_container_platform:3.4:*:*:*:*:*:*:*

cpe:2.3:a:redhat:openshift_container_platform:3.5:*:*:*:*:*:*:*

cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*

cpe:2.3:a:redhat:openstack:11:*:*:*:*:*:*:*

cpe:2.3:a:redhat:storage_console:2.0:*:*:*:*:*:*:*

cpe:2.3:a:redhat:virtualization:4.1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:virtualization_manager:4.1:*:*:*:*:*:*:*

Конфигурация 2

Одновременно

cpe:2.3:a:redhat:gluster_storage:3.2:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*

Конфигурация 3

Одно из

cpe:2.3:a:redhat:ansible_engine:*:*:*:*:*:*:*:*

Версия до 2.3.1.0 (исключая)

cpe:2.3:a:redhat:ansible_engine:*:*:*:*:*:*:*:*

Версия от 2.3.2.0 (включая) до 2.4.0.0 (исключая)

Конфигурация 4

Одно из

cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*

Конфигурация 5

cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

EPSS

Процентиль: 83%

0.01923

Низкий

5.3 Medium

CVSS3

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-20

Связанные уязвимости

CVE-2017-7481

CVSS3: 9.8

ubuntu

больше 7 лет назад

CVE-2017-7481

CVSS3: 5.3

redhat

больше 8 лет назад

CVE-2017-7481

CVSS3: 9.8

debian

больше 7 лет назад

Ansible before versions 2.3.1.0 and 2.4.0.0 fails to properly mark loo ...

GHSA-w578-j992-554x

CVSS3: 9.8

github

больше 7 лет назад

Ansible fails to properly mark lookup-plugin results as unsafe

BDU:2020-02914

CVSS3: 7.3

fstec

больше 8 лет назад

Уязвимость системы управления конфигурациями Ansible, связанная с недостаточной проверкой вводимых данных, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 83%

0.01923

Низкий

5.3 Medium

CVSS3

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-20