Описание
ansible before versions 2.5.14, 2.6.11, 2.7.5 is vulnerable to a information disclosure flaw in vvv+ mode with no_log on that can lead to leakage of sensible data.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| CloudForms Management Engine 5 | ansible | Not affected | ||
| Red Hat Ansible Tower 3 | ansible | Not affected | ||
| Red Hat Ceph Storage 2 | ansible | Affected | ||
| Red Hat Ceph Storage 3 | ansible | Affected | ||
| Red Hat OpenShift Container Platform 3.2 | ansible | Will not fix | ||
| Red Hat OpenShift Container Platform 3.3 | ansible | Will not fix | ||
| Red Hat OpenShift Container Platform 3.4 | ansible | Will not fix | ||
| Red Hat OpenShift Container Platform 3.5 | ansible | Will not fix | ||
| Red Hat OpenShift Container Platform 3.6 | ansible | Will not fix | ||
| Red Hat OpenShift Container Platform 3.7 | ansible | Will not fix |
Показывать по
Дополнительная информация
Статус:
EPSS
5.3 Medium
CVSS3
Связанные уязвимости
ansible before versions 2.5.14, 2.6.11, 2.7.5 is vulnerable to a information disclosure flaw in vvv+ mode with no_log on that can lead to leakage of sensible data.
ansible before versions 2.5.14, 2.6.11, 2.7.5 is vulnerable to a information disclosure flaw in vvv+ mode with no_log on that can lead to leakage of sensible data.
ansible before versions 2.5.14, 2.6.11, 2.7.5 is vulnerable to a infor ...
Уязвимость системы управления конфигурациями Ansible, связанная c раскрытием конфиденциальных данных в режиме vvv+, позволяющая нарушителю получить несанкционированный доступ к информации
EPSS
5.3 Medium
CVSS3