Filter
AND

Versions

3.3
7
3.6.0
6
3.0
4
3.5.0
4
3.5.5
3
3.6.3
3
3.3.4
2
3.4.0
2
3.4.5
2
3.0.0
1
3.1.0
1
3.1.8
1
3.2.0
1
3.2.3
1
3.2.6
1
3.3.0
1
3.3.5
1
3.6.5
1
3.7.0
1
3.7.2
1

Redhat Ansible Automation PlatformA flaw was found in ansible-tower where the default installation is vulnerable to job isolation esca…

high
8.8
First published (updated )
CVE-2021-4112

pip/ansibleInput Validation, Command Injection, Code Injection

high
7.1
First published (updated )
CVE-2021-3583

Redhat Ansible EngineInfoleak

high
7.5
First published (updated )
CVE-2021-20228

Redhat Ansible TowerThe dnf ansible module is not checking GPG signatures when installing packages. This allows installi…

high
7.1
First published (updated )
CVE-2020-14365

Redhat Ansible TowerOAuth2 refresh tokens do not respect the expiration specified in REFRESH_TOKEN_EXPIRE_SECONDS.

high
7.1
First published (updated )
CVE-2020-10709

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Redhat AnsibleCode Injection, Race Condition

high
7.9
First published (updated )
CVE-2020-10684

Redhat Ansible TowerPath Traversal

high
7.8
First published (updated )
CVE-2020-1737

Redhat Ansible TowerOS Command Injection

high
7.4
First published (updated )
CVE-2020-1734

Redhat Ansible TowerA flaw was found in Ansible Tower, versions 3.6.x before 3.6.2 and 3.5.x before 3.5.3, where enablin…

high
8.2
First published (updated )
CVE-2019-19340

redhat/ansible-engineCommand Injection, OS Command Injection, Input Validation

high
7.3
First published (updated )
CVE-2019-14905

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Redhat Ansible TowerA vulnerability was found in Ansible Tower before 3.6.1 where an attacker with low privilege could r…

high
8.4
First published (updated )
CVE-2019-14890

pip/ansibleWhen a module has an argument_spec with sub parameters marked as no_log, passing an invalid paramete…

high
7.3
First published (updated )
CVE-2019-14858

Redhat Ansible TowerInfoleak

high
7.2
First published (updated )
CVE-2019-3869

Fedoraproject FedoraIt was found that the superexec operator was available in the internal dictionary in ghostscript bef…

high
7.3
First published (updated )
CVE-2019-3835

Fedoraproject FedoraThe .forceput (or .forcedef depending on the ghostscript version) is still accessible via DefineReso…

high
7.3
First published (updated )
CVE-2019-3838

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Redhat Ansible EngineLast updated 24 July 2024

high
7.8
First published (updated )
CVE-2018-16837

Paramiko ParamikoLast updated 24 July 2024

high
8.8
First published (updated )
CVE-2018-1000805

Redhat Ansible TowerA privilege escalation flaw was found in the Ansible Tower. When Tower before 3.0.3 deploys a Postgr…

high
8
First published (updated )
CVE-2016-7070

Redhat Ansible TowerCSRF

high
8.8
First published (updated )
CVE-2018-10884

Cabextract LibmspackLast updated 24 July 2024

high
8.8
First published (updated )
CVE-2018-14682

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Cabextract LibmspackLast updated 24 July 2024

high
8.8
First published (updated )
CVE-2018-14681

redhat/ansible-towerCode Injection, Input Validation

high
8.8
First published (updated )
CVE-2018-1104

Redhat CloudformsAnsible Tower before version 3.2.4 has a flaw in the management of system and organization administr…

high
7.2
First published (updated )
CVE-2018-1101

Python PythonInput Validation

high
7.5
First published (updated )
CVE-2018-1061

redhat/pythonInput Validation

high
7.5
First published (updated )
CVE-2018-1060

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203