Red Hat Ansible 2.9.24 Release Candidate 1

CPE Details

Red Hat Ansible 2.9.24 Release Candidate 1
redhat
ansible
2.9.24
2023-12-21
13h54 +00:00
2023-12-21
13h54 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:redhat:ansible:2.9.24:rc1:*:*:*:*:*:*

Informations

Vendor

redhat

Product

ansible

Version

2.9.24

Update

rc1

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2024-0690 2024-02-06 12h00 +00:00 An information disclosure flaw was found in ansible-core due to a failure to respect the ANSIBLE_NO_LOG configuration in some scenarios. Information is still included in the output in certain tasks, such as loop items. Depending on the task, this issue may include sensitive information, such as decrypted secret values.
5.5
Moyen
CVE-2023-5764 2023-12-12 22h01 +00:00 A template injection flaw was found in Ansible where a user's controller internal templating operations may remove the unsafe designation from template data. This issue could allow an attacker to use a specially crafted file to introduce templating injection when supplying templating data.
7.8
Haute
CVE-2022-3697 2022-10-28 00h00 +00:00 A flaw was found in Ansible in the amazon.aws collection when using the tower_callback parameter from the amazon.aws.ec2_instance module. This flaw allows an attacker to take advantage of this issue as the module is handling the parameter insecurely, leading to the password leaking in the logs.
7.5
Haute