Red Hat Ansible Inside 1.1

CPE Details

Red Hat Ansible Inside 1.1
1.1
2023-10-10
15h42 +00:00
2023-10-10
15h42 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:redhat:ansible_inside:1.1:*:*:*:*:*:*:*

Informations

Vendor

redhat

Product

ansible_inside

Version

1.1

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2023-5115 2023-12-18 13h43 +00:00 An absolute path traversal attack exists in the Ansible automation platform. This flaw allows an attacker to craft a malicious Ansible role and make the victim execute the role. A symlink can be used to overwrite a file outside of the extraction path.
6.3
Medium
CVE-2023-3971 2023-10-04 14h26 +00:00 An HTML injection flaw was found in Controller in the user interface settings. This flaw allows an attacker to capture credentials by creating a custom login page by injecting HTML, resulting in a complete compromise.
7.3
High