CVE-2016-8647

Опубликовано: 26 окт. 2016

Источник: redhat

CVSS3: 2.2

CVSS2: 3.5

Описание

An input validation vulnerability was found in Ansible's mysql_user module before 2.2.1.0, which may fail to correctly change a password in certain circumstances. Thus the previous password would still be active when it should have been changed.

An input validation vulnerability was found in Ansible's mysql_user module which may fail to correctly change a password in certain circumstances. Thus the previous password would still be active when it should have been changed.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Gluster Storage 3.1	ansible	Not affected
Red Hat OpenShift Enterprise 3	ansible	Affected
Red Hat OpenStack Platform 10 (Newton)	ansible	Not affected
Red Hat OpenStack Platform 11 (Ocata)	ansible	Not affected
Red Hat Quickstart Cloud Installer 1	ansible	Will not fix
Red Hat Storage Console 2	ansible	Not affected
Red Hat Virtualization Engine 4.1	ansible	Fixed	RHSA-2017:1685	06.07.2017

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-20

https://bugzilla.redhat.com/show_bug.cgi?id=1396174Ansible: in some circumstances the mysql_user module may fail to correctly change a password

2.2 Low

CVSS3

3.5 Low

CVSS2

Связанные уязвимости

CVE-2016-8647

CVSS3: 4.9

ubuntu

больше 7 лет назад

CVE-2016-8647

CVSS3: 4.9

nvd

больше 7 лет назад

CVE-2016-8647

CVSS3: 4.9

debian

больше 7 лет назад

An input validation vulnerability was found in Ansible's mysql_user mo ...

GHSA-x4cm-m36h-c6qj

CVSS3: 4.9

github

больше 7 лет назад

Improper Input Validation in ansible

SUSE-SU-2024:1509-1

suse-cvrf

почти 2 года назад

Security update for SUSE Manager Client Tools

2.2 Low

CVSS3

3.5 Low

CVSS2