Red Hat Ansible Automation Platform 2.3

CPE Details

Red Hat Ansible Automation Platform 2.3
2.3
2023-10-10
15h42 +00:00
2023-10-10
15h42 +00:00
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:redhat:ansible_automation_platform:2.3:*:*:*:*:*:*:*

Informations

Vendor

redhat

Product

ansible_automation_platform

Version

2.3

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2023-5115 2023-12-18 13h43 +00:00 An absolute path traversal attack exists in the Ansible automation platform. This flaw allows an attacker to craft a malicious Ansible role and make the victim execute the role. A symlink can be used to overwrite a file outside of the extraction path.
6.3
Moyen
CVE-2023-3971 2023-10-04 14h26 +00:00 An HTML injection flaw was found in Controller in the user interface settings. This flaw allows an attacker to capture credentials by creating a custom login page by injecting HTML, resulting in a complete compromise.
7.3
Haute