Описание
A privilege escalation flaw was found in the Ansible Automation Platform. This flaw allows a remote authenticated user with 'change user' permissions to modify the account settings of the superuser account and also remove the superuser privileges.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Ansible Automation Platform 1.2 | automation hub | Not affected | ||
| Red Hat Ansible Automation Platform 2.1 for RHEL 8 | python-galaxy-ng | Fixed | RHSA-2022:6078 | 16.08.2022 |
| Red Hat Ansible Automation Platform 2.2 for RHEL 8 | python3x-galaxy-ng | Fixed | RHSA-2022:6079 | 16.08.2022 |
| Red Hat Ansible Automation Platform 2.2 for RHEL 9 | python-galaxy-ng | Fixed | RHSA-2022:6079 | 16.08.2022 |
Показывать по
Дополнительная информация
Статус:
7.2 High
CVSS3
Связанные уязвимости
A privilege escalation flaw was found in the Ansible Automation Platform. This flaw allows a remote authenticated user with 'change user' permissions to modify the account settings of the superuser account and also remove the superuser privileges.
A privilege escalation flaw was found in the Ansible Automation Platform. This flaw allows a remote authenticated user with 'change user' permissions to modify the account settings of the superuser account and also remove the superuser privileges.
A privilege escalation flaw was found in the Ansible Automation Platform. This flaw allows a remote authenticated user with 'change user' permissions to modify the account settings of the superuser account and also remove the superuser privileges.
7.2 High
CVSS3