Filter
AND

Versions

3.6.0
20
3.3
17
3.5.0
17
3.4.5
12
3.5.5
12
3.6.3
12
3.0
10
3.3.4
9
3.7.0
7
3.3.5
6
3.4.0
6
3.0.0
2
3.3.0
2
3.7.2
2
3.1.0
1
3.1.8
1
3.2.0
1
3.2.3
1
3.2.6
1
3.5.6
1
3.6.4
1
3.6.5
1
3.8.0
1

ubuntu/libxcursorBuffer Overflow

critical
9.8
First published (updated )
CVE-2015-9262

Redhat Enterprise LinuxGit before 2.14.5, 2.15.x before 2.15.3, 2.16.x before 2.16.5, 2.17.x before 2.17.2, 2.18.x before 2…

critical
9.8
First published (updated )
CVE-2018-17456

Canonical Ubuntu LinuxLast updated 24 July 2024

critical
9.8
First published (updated )
CVE-2018-12910

Redhat Ansible TowerAnsible Tower before version 3.3.3 does not set a secure channel as it is using the default insecure…

critical
9.8
First published (updated )
CVE-2018-16879

redhat/ansible_towerInput Validation

critical
9
First published (updated )
CVE-2017-12148

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

redhat/ansible-towerCode Injection, Input Validation

high
8.8
First published (updated )
CVE-2018-1104

Cabextract LibmspackLast updated 24 July 2024

high
8.8
First published (updated )
CVE-2018-14681

Cabextract LibmspackLast updated 24 July 2024

high
8.8
First published (updated )
CVE-2018-14682

Redhat Ansible TowerCSRF

high
8.8
First published (updated )
CVE-2018-10884

Redhat Ansible Automation PlatformA flaw was found in ansible-tower where the default installation is vulnerable to job isolation esca…

high
8.8
First published (updated )
CVE-2021-4112

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Paramiko ParamikoLast updated 24 July 2024

high
8.8
First published (updated )
CVE-2018-1000805

Redhat Ansible TowerA vulnerability was found in Ansible Tower before 3.6.1 where an attacker with low privilege could r…

high
8.4
First published (updated )
CVE-2019-14890

Redhat Ansible TowerA flaw was found in Ansible Tower, versions 3.6.x before 3.6.2 and 3.5.x before 3.5.3, where enablin…

high
8.2
First published (updated )
CVE-2019-19340

Redhat Ansible TowerA privilege escalation flaw was found in the Ansible Tower. When Tower before 3.0.3 deploys a Postgr…

high
8
First published (updated )
CVE-2016-7070

Redhat AnsibleCode Injection, Race Condition

high
7.9
First published (updated )
CVE-2020-10684

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Redhat Ansible TowerPath Traversal

high
7.8
First published (updated )
CVE-2020-1737

Redhat Ansible EngineLast updated 24 July 2024

high
7.8
First published (updated )
CVE-2018-16837

Redhat Ansible EngineInfoleak

high
7.5
First published (updated )
CVE-2021-20228

Python PythonInput Validation

high
7.5
First published (updated )
CVE-2018-1061

redhat/pythonInput Validation

high
7.5
First published (updated )
CVE-2018-1060

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Redhat Ansible TowerOS Command Injection

high
7.4
First published (updated )
CVE-2020-1734

Fedoraproject FedoraIt was found that the superexec operator was available in the internal dictionary in ghostscript bef…

high
7.3
First published (updated )
CVE-2019-3835

Fedoraproject FedoraThe .forceput (or .forcedef depending on the ghostscript version) is still accessible via DefineReso…

high
7.3
First published (updated )
CVE-2019-3838

pip/ansibleWhen a module has an argument_spec with sub parameters marked as no_log, passing an invalid paramete…

high
7.3
First published (updated )
CVE-2019-14858

redhat/ansible-engineCommand Injection, OS Command Injection, Input Validation

high
7.3
First published (updated )
CVE-2019-14905

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Redhat CloudformsAnsible Tower before version 3.2.4 has a flaw in the management of system and organization administr…

high
7.2
First published (updated )
CVE-2018-1101

Redhat Ansible TowerInfoleak

high
7.2
First published (updated )
CVE-2019-3869

Redhat Ansible TowerOAuth2 refresh tokens do not respect the expiration specified in REFRESH_TOKEN_EXPIRE_SECONDS.

high
7.1
First published (updated )
CVE-2020-10709

pip/ansibleInput Validation, Command Injection, Code Injection

high
7.1
First published (updated )
CVE-2021-3583

Redhat Ansible TowerThe dnf ansible module is not checking GPG signatures when installing packages. This allows installi…

high
7.1
First published (updated )
CVE-2020-14365

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203