Latest redhat ansible tower Vulnerabilities

CVE-2021-4112
A researcher found a trivial bypass for <a href="https://access.redhat.com/security/cve/CVE-2021-20253">CVE-2021-20253</a> by sending a mail to awx user, thereby leveraging postfix to create a folder,...
Redhat Ansible Automation Platform Early Access=2.0
Redhat Ansible Automation Platform Text-only Advisories
Redhat Ansible Tower=3.0
Redhat Ansible Automation Platform=2.0
Redhat Ansible Automation Platform=2.1
Redhat Enterprise Linux=8.0
CVE-2021-3533
A flaw was found in Ansible if an ansible user sets ANSIBLE_ASYNC_DIR to a subdirectory of a world writable directory. When this occurs, there is a race condition on the managed machine. A malicious, ...
Redhat Ansible Automation Platform=1.2
Redhat Ansible Tower=3.7.0
Redhat Ansible Engine=2.0
Redhat Ansible Tower=3.0
Redhat Enterprise Linux=7.0
Fedoraproject Fedora=34
and 1 more
CVE-2021-3532
A flaw was found in Ansible where the secret information present in async_files are getting disclosed when the user changes the jobdir to a world readable directory. Any secret information in an async...
Redhat Ansible Automation Platform=1.2
Redhat Ansible Tower=3.7.0
Redhat Ansible Engine=2.0
Redhat Ansible Tower=3.0
Redhat Enterprise Linux=7.0
Fedoraproject Fedora=34
and 1 more
CVE-2021-3583
A flaw was found in Ansible, where a user's controller is vulnerable to template injection. This issue can occur through facts used in the template if the user is trying to put templates in multi-line...
redhat/ansible_tower<3.7
redhat/ansible_engine<2.9.23
=1.2
<2.9.23
<3.7.0
Redhat Ansible Automation Platform=1.2
and 3 more
CVE-2021-3447
A flaw was found in several ansible modules, where parameters containing credentials, such as secrets, were being logged in plain-text on managed nodes, as well as being made visible on the controller...
redhat/ansible<0:2.9.20-1.el7ae
redhat/ansible<0:2.9.20-1.el8ae
redhat/redhat-virtualization-host<0:4.4.7-20210715.1.el8_4
redhat/ansible<0:2.9.21-1.el8ae
redhat/Red Hat Ansible Automation Platform<1.2.2
redhat/Ansible Tower<3.8.2
and 10 more
CVE-2021-20253
A flaw was found in ansible-tower. The default installation is vulnerable to Job Isolation escape allowing an attacker to elevate the privilege from a low privileged user to the awx user from outside ...
redhat/ansible-tower<3.8.2
redhat/ansible-tower<3.7.5
redhat/ansible-tower<3.6.7
Redhat Ansible Tower<3.6.7
Redhat Ansible Tower>=3.7.0<3.7.5
Redhat Ansible Tower>=3.8.0<3.8.2
CVE-2021-20228
A flaw was found in the Ansible Engine 2.9.18, where sensitive info is not masked by default and is not protected by the `no_log` feature when using the sub-option feature of the basic.py module. This...
pip/ansible<2.8.19
pip/ansible>=2.9.0<2.9.18
pip/ansible>=2.10.0<2.10.7
redhat/ansible-engine<2.9.18
redhat/ansible<0:2.9.18-1.el7ae
redhat/ansible<0:2.9.18-1.el8ae
and 7 more
CVE-2021-20191
A flaw was found in ansible. Credentials, such as secrets, are being disclosed in console log by default and not protected by no_log feature when using those modules. An attacker can take advantage of...
redhat/ansible<0:2.9.18-1.el7ae
redhat/ansible<0:2.9.18-1.el8ae
redhat/ansible<2.9.18
=4.0
<2.8.19
>=2.9.0<2.9.18
and 24 more
CVE-2021-20178
A flaw was found in ansible module where credentials are disclosed in the console log by default and not protected by the security feature when using the bitbucket_pipeline_variable module. This flaw ...
redhat/ansible<0:2.9.18-1.el7ae
redhat/ansible<0:2.9.18-1.el8ae
redhat/ansible<2.9.18
<2.9.18
=3.0
=32
and 5 more
CVE-2020-14365
A flaw was found in the Ansible Engine, in ansible-engine 2.8.x before 2.8.15 and ansible-engine 2.9.x before 2.9.13, when installing packages using the dnf module. GPG signatures are ignored during i...
pip/ansible>=2.9.0<2.9.13
pip/ansible<2.8.15
redhat/ansible-engine<2.8.15
redhat/ansible-engine<2.9.13
Redhat Ansible Engine>=2.8.0<=2.8.15
Redhat Ansible Engine>=2.9.0<=2.9.13
and 9 more
CVE-2020-14337
A data exposure flaw was found in Tower, where sensitive data was revealed from the HTTP return error codes. This flaw allows an unauthenticated, remote attacker to retrieve pages from the default org...
Redhat Ansible Tower=3.0.0
redhat/ansible_tower<3.7.2
redhat/ansible_tower<3.8.0
CVE-2020-14329
A data exposure flaw was found in Ansible Tower in versions before 3.7.2, where sensitive data can be exposed from the /api/v2/labels/ endpoint. This flaw allows users from other organizations in the ...
redhat/ansible_tower<3.7.2
Redhat Ansible Tower<3.7.2
CVE-2020-14327
A Server-side request forgery (SSRF) flaw was found in Ansible Tower in versions before 3.6.5 and before 3.7.2. Functionality on the Tower server is abused by supplying a URL that could lead to the se...
Redhat Ansible Tower<3.6.5
Redhat Ansible Tower>=3.7.0<3.7.2
redhat/ansible_tower<3.6.5
redhat/ansible_tower<3.7.2
CVE-2020-14328
A flaw was found in Ansible Tower in versions before 3.7.2. A Server Side Request Forgery flaw can be abused by supplying a URL which could lead to the server processing it connecting to internal serv...
redhat/ansible_tower<3.7.2
Redhat Ansible Tower<3.7.2
CVE-2020-10782
An exposure of sensitive information flaw was found in Ansible version 3.7.0. Sensitive information, such tokens and other secrets could be readable and exposed from the rsyslog configuration file, wh...
Redhat Ansible Tower=3.7.0
CVE-2020-10744
An incomplete fix was found for the fix of the flaw CVE-2020-1733 ansible: insecure temporary directory when running become_user from become directive. The provided fix is insufficient to prevent the ...
Redhat Ansible>=2.7.0<=2.7.18
Redhat Ansible>=2.8.0<=2.8.12
Redhat Ansible>=2.9.0<=2.9.9
Redhat Ansible Tower>=3.4.0<=3.4.5
Redhat Ansible Tower>=3.5.0<=3.5.6
Redhat Ansible Tower>=3.6.0<=3.6.4
CVE-2020-10709
A security flaw was found in Ansible Tower when requesting an OAuth2 token with an OAuth2 application. Ansible Tower uses the token to provide authentication. This flaw allows an attacker to obtain a ...
Redhat Ansible Tower<3.5.6
Redhat Ansible Tower>=3.6.0<3.6.4
redhat/ansible_tower<3.6.4
redhat/ansible_tower<3.5.6
CVE-2020-10698
A flaw was found in Ansible Tower when running jobs. This flaw allows an attacker to access the stdout of the executed jobs which are run from other organizations. Some sensible data can be disclosed....
Redhat Ansible Tower<3.4.6
Redhat Ansible Tower>=3.5.0<3.5.6
Redhat Ansible Tower>=3.6.0<3.6.4
redhat/ansible_tower<3.6.4
redhat/ansible_tower<3.5.6
redhat/ansible_tower<3.4.6
CVE-2020-10697
Tower executes a memcached which is accessed via TCP on a domain socket that it is shared amongst containers on Openshift. Making OpenShift memcached deployment insecure.
redhat/ansible_tower<3.6.4
redhat/ansible_tower<3.5.6
redhat/ansible_tower<3.4.6
Redhat Ansible Tower<3.4.6
Redhat Ansible Tower>=3.5.0<3.5.6
Redhat Ansible Tower>=3.6.0<3.6.4
CVE-2020-10691
An archive traversal flaw was found in all ansible-engine versions 2.9.x prior to 2.9.7, when running `ansible-galaxy collection` install. When extracting a collection .tar.gz file, the directory is c...
Redhat Ansible Engine>=2.9.0<2.9.7
Redhat Ansible Tower=3.0
pip/ansible>=2.9.0<2.9.7
CVE-2020-10684
A flaw was found in Ansible Engine, all versions 2.7.x, 2.8.x and 2.9.x prior to 2.7.17, 2.8.9 and 2.9.6 respectively, when using ansible_facts as a subkey of itself and promoting it to a variable whe...
pip/ansible>=2.9.0<2.9.6
pip/ansible>=2.8.0<2.8.9
pip/ansible>=2.7.0<2.7.17
redhat/ansible-engine<2.7.17
redhat/ansible-engine<2.8.11
redhat/ansible-engine<2.9.7
and 13 more
CVE-2020-10685
A flaw was found in Ansible Engine affecting Ansible Engine versions 2.7.x before 2.7.17 and 2.8.x before 2.8.11 and 2.9.x before 2.9.7 as well as Ansible Tower before and including versions 3.4.5 and...
redhat/ansible-engine<2.7.17
redhat/ansible-engine<2.8.11
redhat/ansible-engine<2.9.7
redhat/ansible<0:2.7.17-1.el7ae
redhat/ansible<0:2.8.11-1.el7ae
redhat/ansible<0:2.8.11-1.el8ae
and 16 more
CVE-2020-1738
A flaw was found in Ansible Engine when the module package or service is used and the parameter 'use' is not specified. If a previous task is executed with a malicious user, the module sent can be sel...
Redhat Ansible<=2.7.16
Redhat Ansible>=2.8.0<=2.8.8
Redhat Ansible>=2.9.0<=2.9.5
Redhat Ansible Tower<=3.3.4
Redhat Ansible Tower>=3.3.5<=3.4.5
Redhat Ansible Tower>=3.5.0<=3.5.5
and 3 more
CVE-2020-1753
A security flaw was found in Ansible Engine, all Ansible 2.7.x versions prior to 2.7.17, all Ansible 2.8.x versions prior to 2.8.11 and all Ansible 2.9.x versions prior to 2.9.7, when managing kuberne...
redhat/ansible-engine<2.7.18
redhat/ansible-engine<2.8.11
redhat/ansible-engine<2.9.7
Redhat Ansible Engine<2.7.18
Redhat Ansible Engine>=2.8.0<2.8.11
Redhat Ansible Engine>=2.9.0<2.9.7
and 9 more
CVE-2020-1746
A flaw was found in the Ansible Engine affecting Ansible Engine versions 2.7.x before 2.7.17 and 2.8.x before 2.8.11 and 2.9.x before 2.9.7 as well as Ansible Tower before and including versions 3.4.5...
pip/ansible>=2.9.0<2.9.7
pip/ansible>=2.8.0<2.8.11
pip/ansible<2.7.17
redhat/ansible-engine<2.7.17
redhat/ansible-engine<2.8.11
redhat/ansible-engine<2.9.7
and 8 more
CVE-2020-1740
A flaw was found in Ansible Engine when using Ansible Vault for editing encrypted files. When a user executes "ansible-vault edit", another user on the same computer can read the old and new secret, a...
redhat/ansible-engine<2.7.17
redhat/ansible-engine<2.8.11
redhat/ansible-engine<2.9.7
redhat/ansible<0:2.7.17-1.el7ae
redhat/ansible<0:2.8.11-1.el7ae
redhat/ansible<0:2.8.11-1.el8ae
and 17 more
CVE-2020-1739
A flaw was found in Ansible 2.7.16 and prior, 2.8.8 and prior, and 2.9.5 and prior when a password is set with the argument "password" of svn module, it is used on svn command line, disclosing to othe...
redhat/ansible-engine<2.7.17
redhat/ansible-engine<2.8.11
redhat/ansible-engine<2.9.7
Redhat Ansible<=2.7.16
Redhat Ansible>=2.8.0<=2.8.8
Redhat Ansible>=2.9.0<=2.9.5
and 12 more
CVE-2020-1737
A flaw was found in Ansible 2.7.17 and prior, 2.8.9 and prior, and 2.9.6 and prior when using the Extract-Zip function from the win_unzip module as the extracted file(s) are not checked if they belong...
Redhat Ansible Engine<2.7.17
Redhat Ansible Engine>=2.8.0<2.8.9
Redhat Ansible Engine>=2.9.0<2.9.6
Redhat Ansible Tower<=3.3.4
Redhat Ansible Tower>=3.4.0<=3.4.5
Redhat Ansible Tower>=3.5.0<=3.5.5
and 4 more
CVE-2020-1735
A flaw was found in the Ansible Engine when the fetch module is used. An attacker could intercept the module, inject a new path, and then choose a new destination path on the controller node. All vers...
redhat/ansible-engine<2.7.17
redhat/ansible-engine<2.8.11
redhat/ansible-engine<2.9.7
Redhat Ansible<2.7.17
Redhat Ansible>=2.8.0<2.8.11
Redhat Ansible>=2.9.0<2.9.7
and 11 more
CVE-2020-1734
A flaw was found in the pipe lookup plugin of ansible. Arbitrary commands can be run, when the pipe lookup plugin uses subprocess.Popen() with shell=True, by overwriting ansible facts and the variable...
Redhat Ansible Engine<=2.7.16
Redhat Ansible Engine=2.8.8
Redhat Ansible Engine=2.9.5
Redhat Ansible Tower<=3.3.4
Redhat Ansible Tower=3.4.5
Redhat Ansible Tower=3.5.5
and 1 more
CVE-2020-1733
A race condition flaw was found in Ansible Engine 2.7.17 and prior, 2.8.9 and prior, 2.9.6 and prior when running a playbook with an unprivileged become user. When Ansible needs to run a module with b...
redhat/ansible-engine<2.7.17
redhat/ansible-engine<2.8.11
redhat/ansible-engine<2.9.7
redhat/ansible<0:2.7.17-1.el7ae
redhat/ansible<0:2.8.11-1.el7ae
redhat/ansible<0:2.8.11-1.el8ae
and 17 more
CVE-2019-14864
Ansible, versions 2.9.x before 2.9.1, 2.8.x before 2.8.7 and Ansible versions 2.7.x before 2.7.15, is not respecting the flag no_log set it to True when Sumologic and Splunk callback plugins are used ...
Redhat Ansible>=2.7.0<2.7.15
Redhat Ansible>=2.8.0<2.8.7
Redhat Ansible>=2.9.0<2.9.1
Redhat Ansible Tower=3.0
Microsoft Windows Server 2022=3.0
Redhat Cloudforms Management Engine=5.0
and 7 more
CVE-2019-19341
A flaw was found in Ansible Tower, versions 3.6.x before 3.6.2, where files in '/var/backup/tower' are left world-readable. These files include both the SECRET_KEY and the database backup. Any user wi...
Redhat Ansible Tower>=3.6.0<3.6.2
CVE-2019-19342
A flaw was found in Ansible Tower, versions 3.6.x before 3.6.2 and 3.5.x before 3.5.4, when /websocket is requested and the password contains the '#' character. This request would cause a socket error...
Redhat Ansible Tower>=3.5.0<3.5.4
Redhat Ansible Tower>=3.6.0<3.6.2
CVE-2019-19340
A flaw was found in Ansible Tower, versions 3.6.x before 3.6.2 and 3.5.x before 3.5.3, where enabling RabbitMQ manager by setting it with '-e rabbitmq_enable_manager=true' exposes the RabbitMQ managem...
Redhat Ansible Tower>=3.5.0<3.5.3
Redhat Ansible Tower>=3.6.0<3.6.2
Redhat Enterprise Linux=7.0
CVE-2019-14905
A vulnerability was found in Ansible Engine versions 2.9.x before 2.9.3, 2.8.x before 2.8.8, 2.7.x before 2.7.16 and earlier, where in Ansible's nxos_file_copy module can be used to copy files to a fl...
redhat/ansible-engine<2.9.4
redhat/ansible-engine<2.8.8
redhat/ansible-engine<2.7.16
Redhat Ansible Engine>=2.7.0<2.7.16
Redhat Ansible Engine>=2.8.0<2.8.8
Redhat Ansible Engine>=2.9.0<2.9.3
and 7 more
CVE-2019-14890
A vulnerability was found in Ansible Tower before 3.6.1 where an attacker with low privilege could retrieve usernames and passwords credentials from the new RHSM saved in plain text into the database ...
Redhat Ansible Tower=3.6.0
CVE-2019-14858
A vulnerability was found in Ansible engine 2.x up to 2.8 and Ansible tower 3.x up to 3.5. When a module has an argument_spec with sub parameters marked as no_log, passing an invalid parameter name to...
Redhat Ansible Engine>=2.0<=2.8.0
Redhat Ansible Tower>=3.0<=3.5.0
CVE-2019-3869
When running Tower before 3.4.3 on OpenShift or Kubernetes, application credentials are exposed to playbook job runs via environment variables. A malicious user with the ability to write playbooks cou...
Redhat Ansible Tower<3.3.5
Redhat Ansible Tower>=3.4.0<3.4.3
CVE-2019-3835
It was found that the superexec operator was available in the internal dictionary in ghostscript before 9.27. A specially crafted PostScript file could use this flaw in order to, for example, have acc...
debian/ghostscript<=9.26a~dfsg-2<=9.26a~dfsg-0+deb9u1
Artifex Ghostscript<9.27
Redhat Ansible Tower=3.3
Redhat Enterprise Linux Desktop=7.0
Redhat Enterprise Linux Server=7.0
Redhat Enterprise Linux Server Aus=7.6
and 12 more
CVE-2019-3838
It was found that the forceput operator could be extracted from the DefineResource method in ghostscript before 9.27. A specially crafted PostScript file could use this flaw in order to, for example, ...
debian/ghostscript
debian/ghostscript<=9.26a~dfsg-0+deb9u1<=9.26a~dfsg-2
Artifex Ghostscript<9.27
Redhat Ansible Tower=3.3
Redhat Enterprise Linux=5.0
Redhat Enterprise Linux=6.0
and 14 more
CVE-2018-16837
"User" module leaks any data which is passed on as a parameter to ssh-keygen. This could lean in undesirable situations such as passphrases credentials passed as a parameter for the ssh-keygen executa...
redhat/ansible-engine<2.7.1
redhat/ansible-engine<2.6.7
redhat/ansible-engine<2.5.11
ubuntu/ansible<2.5.1+dfsg-1ubuntu0.1
ubuntu/ansible<2.8.0
ubuntu/ansible<2.0.0.2-2ubuntu1.3
and 19 more
CVE-2018-1000805
Paramiko version 2.4.1, 2.3.2, 2.2.3, 2.1.5, 2.0.8, 1.18.5, 1.17.6 contains a Incorrect Access Control vulnerability in SSH server that can result in RCE. This attack appear to be exploitable via netw...
ubuntu/paramiko<2.4.2
ubuntu/paramiko<1.10.1-1
ubuntu/paramiko<1.16.0-1ubuntu0.2
ubuntu/paramiko<2.0.0-1ubuntu1.1
ubuntu/paramiko<2.4.1-0ubuntu3.1
=1.17.6
and 70 more
CVE-2018-17456
A flaw was found in git which allows an attacker to execute arbitrary code by crafting a malicious .gitmodules file in a project cloned with --recurse-submodules. References: <a href="https://bugzil...
>=2.14.0<2.14.5
>=2.15.0<2.15.3
>=2.16.0<2.16.5
>=2.17.0<2.17.2
>=2.18.0<2.18.1
>=2.19.0<2.19.1
and 53 more
CVE-2016-7070
A privilege escalation flaw was found in the Ansible Tower. When Tower before 3.0.3 deploys a PostgreSQL database, it incorrectly configures the trust level of postgres user. An attacker could use thi...
Redhat Ansible Tower<3.0.3
CVE-2017-7528
Ansible Tower as shipped with Red Hat CloudForms Management Engine 5 is vulnerable to CRLF Injection. It was found that X-Forwarded-For header allows internal servers to deploy other systems (using ca...
Redhat Ansible Tower
Redhat Cloudforms Management Engine=5.0
CVE-2018-10884
Ansible Tower before versions 3.1.8 and 3.2.6 is vulnerable to cross-site request forgery (CSRF) in awx/api/authentication.py. An attacker could exploit this by tricking already authenticated users in...
Redhat Ansible Tower>=3.1.0<=3.1.8
Redhat Ansible Tower>=3.2.0<=3.2.6
CVE-2015-9262
_XcursorThemeInherits in library.c in libXcursor before 1.1.15 allows remote attackers to cause denial of service or potentially code execution via a one-byte heap overflow.
ubuntu/libxcursor<1:1.1.15-1
ubuntu/libxcursor<1:1.1.14-1ubuntu0.16.04.2
ubuntu/libxcursor<1:1.1.14-1ubuntu0.14.04.2
=8.0
=14.04
=16.04
and 15 more
CVE-2018-14680
An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. It does not reject blank CHM filenames.
Cabextract Libmspack=0.0.20060920-alpha
Cabextract Libmspack=0.3-alpha
Cabextract Libmspack=0.4-alpha
Cabextract Libmspack=0.5-alpha
Cabextract Libmspack=0.6-alpha
Cabextract Project Cabextract<=1.5
and 16 more
CVE-2018-14681
An issue was discovered in kwajd_read_headers in mspack/kwajd.c in libmspack before 0.7alpha. Bad KWAJ file header extensions could cause a one or two byte overwrite.
Cabextract Libmspack=0.0.20060920-alpha
Cabextract Libmspack=0.3-alpha
Cabextract Libmspack=0.4-alpha
Cabextract Libmspack=0.5-alpha
Cabextract Libmspack=0.6-alpha
Cabextract Project Cabextract<=1.5
and 16 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203