CVE-2020-25646

Опубликовано: 29 окт. 2020

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

A flaw was found in Ansible Collection community.crypto. openssl_privatekey_info exposes private key in logs. This directly impacts confidentiality

Ссылки

https://github.com/ansible-collections/community.crypto/commit/233d1afc296f6770e905a1785ee2f35af7605e43
Patch
Third Party Advisory
https://github.com/ansible-collections/community.crypto/commit/233d1afc296f6770e905a1785ee2f35af7605e43
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ansible_collections_project:community.crypto:-:*:*:*:*:*:*:*

EPSS

Процентиль: 65%

0.00496

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-117

CWE-116

Связанные уязвимости

CVE-2020-25646

CVSS3: 7.5

ubuntu

больше 5 лет назад

A flaw was found in Ansible Collection community.crypto. openssl_privatekey_info exposes private key in logs. This directly impacts confidentiality

CVE-2020-25646

CVSS3: 7.5

debian

больше 5 лет назад

A flaw was found in Ansible Collection community.crypto. openssl_priva ...

GHSA-92hf-4chr-8hrf

github

больше 3 лет назад

A flaw was found in Ansible Collection community.crypto. openssl_privatekey_info exposes private key in logs. This directly impacts confidentiality

EPSS

Процентиль: 65%

0.00496

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-117

CWE-116