Redhat Ansible 2.9.25

CPE Details

Redhat Ansible 2.9.25
redhat
ansible
2.9.25
2023-12-21
13h54 +00:00
2023-12-21
13h54 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:redhat:ansible:2.9.25:-:*:*:*:*:*:*

Informations

Vendor

redhat

Product

ansible

Version

2.9.25

Update

-

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2024-0690 2024-02-06 12h00 +00:00 An information disclosure flaw was found in ansible-core due to a failure to respect the ANSIBLE_NO_LOG configuration in some scenarios. Information is still included in the output in certain tasks, such as loop items. Depending on the task, this issue may include sensitive information, such as decrypted secret values.
5.5
Medium
CVE-2023-5764 2023-12-12 22h01 +00:00 A template injection flaw was found in Ansible where a user's controller internal templating operations may remove the unsafe designation from template data. This issue could allow an attacker to use a specially crafted file to introduce templating injection when supplying templating data.
7.8
High
CVE-2022-3697 2022-10-28 00h00 +00:00 A flaw was found in Ansible in the amazon.aws collection when using the tower_callback parameter from the amazon.aws.ec2_instance module. This flaw allows an attacker to take advantage of this issue as the module is handling the parameter insecurely, leading to the password leaking in the logs.
7.5
High