Количество 7
Количество 7
CVE-2020-1734
A flaw was found in the pipe lookup plugin of ansible. Arbitrary commands can be run, when the pipe lookup plugin uses subprocess.Popen() with shell=True, by overwriting ansible facts and the variable is not escaped by quote plugin. An attacker could take advantage and run arbitrary commands by overwriting the ansible facts.
CVE-2020-1734
A flaw was found in the pipe lookup plugin of ansible. Arbitrary commands can be run, when the pipe lookup plugin uses subprocess.Popen() with shell=True, by overwriting ansible facts and the variable is not escaped by quote plugin. An attacker could take advantage and run arbitrary commands by overwriting the ansible facts.
CVE-2020-1734
A flaw was found in the pipe lookup plugin of ansible. Arbitrary commands can be run, when the pipe lookup plugin uses subprocess.Popen() with shell=True, by overwriting ansible facts and the variable is not escaped by quote plugin. An attacker could take advantage and run arbitrary commands by overwriting the ansible facts.
CVE-2020-1734
A flaw was found in the pipe lookup plugin of ansible. Arbitrary comma ...
GHSA-h39q-95q5-9jfp
OS Command Injection in ansible
BDU:2020-05762
Уязвимость системы управления конфигурациями Ansible, связанная с неприятием мер по нейтрализации специальных элементов, используемых в команде ОС, позволяющая нарушителю повысить свои привилегии и выполнить произвольный код
openSUSE-SU-2022:0081-1
Security update for ansible
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-1734 A flaw was found in the pipe lookup plugin of ansible. Arbitrary commands can be run, when the pipe lookup plugin uses subprocess.Popen() with shell=True, by overwriting ansible facts and the variable is not escaped by quote plugin. An attacker could take advantage and run arbitrary commands by overwriting the ansible facts. | CVSS3: 7.4 | 0% Низкий | почти 6 лет назад |
 | CVE-2020-1734 A flaw was found in the pipe lookup plugin of ansible. Arbitrary commands can be run, when the pipe lookup plugin uses subprocess.Popen() with shell=True, by overwriting ansible facts and the variable is not escaped by quote plugin. An attacker could take advantage and run arbitrary commands by overwriting the ansible facts. | CVSS3: 7.4 | 0% Низкий | почти 6 лет назад |
 | CVE-2020-1734 A flaw was found in the pipe lookup plugin of ansible. Arbitrary commands can be run, when the pipe lookup plugin uses subprocess.Popen() with shell=True, by overwriting ansible facts and the variable is not escaped by quote plugin. An attacker could take advantage and run arbitrary commands by overwriting the ansible facts. | CVSS3: 7.4 | 0% Низкий | почти 6 лет назад |
| CVE-2020-1734 A flaw was found in the pipe lookup plugin of ansible. Arbitrary comma ... | CVSS3: 7.4 | 0% Низкий | почти 6 лет назад |
| GHSA-h39q-95q5-9jfp OS Command Injection in ansible | CVSS3: 7.4 | 0% Низкий | около 4 лет назад |
 | BDU:2020-05762 Уязвимость системы управления конфигурациями Ansible, связанная с неприятием мер по нейтрализации специальных элементов, используемых в команде ОС, позволяющая нарушителю повысить свои привилегии и выполнить произвольный код | CVSS3: 7.4 | 0% Низкий | почти 6 лет назад |
 | openSUSE-SU-2022:0081-1 Security update for ansible | почти 4 года назад |
Уязвимостей на страницу