pkg:Debian/ansible

All known vulnerabilities

• CRITICAL9.8CVE-2014-4678Ansible Code Injection Vulnerability
  from 0, < 1.6.6+dfsg-1
• CRITICAL9.8CVE-2014-4657Ansible Remote Code Execution
  from 0, < 1.5.5+dfsg-1
• CRITICAL9.8CVE-2014-4967Ansible Arbitrary Code Execution
  from 0, < 1.6.8+dfsg-1
• CRITICAL9.8Ansible Arbitrary Code Execution
  from 0, < 1.6.8+dfsg-1
• CRITICAL9.8Ansible Insertion of Sensitive Information into Log File vulnerability
  from 0, < 2.4.2.0+dfsg-1
• CRITICAL9.8ansible - security update
  from 0, < 2.3.1.0+dfsg-1
• CRITICAL9.8ansible - security update
  from 0, < 2.2.1.0-2+deb9u2
• CRITICAL9.1Ansible fails to properly sanitize fact variables sent from the Ansible controller
  from 0, < 2.2.0.0-1
• HIGH8.8Ansible Arbitrary Code Execution
  from 0, < 1.7.0+dfsg-1
• HIGH8.1Ansible is vulnerable to an improper input validation in Ansible's handling of data sent from client systems
  from 0, < 2.2.0.0-3
• HIGH8.0Ansible Arbitrary Code Execution
  from 0, < 2.2.1.0-2
• HIGH7.8A flaw was found in ansible-core.
  from 0
• HIGH7.8ansible - security update
  from 0, < 2.8.6+dfsg-1
• HIGH7.8ansible - security update
  from 0, < 1.7.2+dfsg-2+deb8u3
• HIGH7.8Ansible Sandbox Escape via Symlink Attack
  from 0, < 1.9.2+dfsg-1
• HIGH7.8ansible - security update
  from 0, < 1.7.2+dfsg-2+deb8u1
• HIGH7.8ansible - security update
  from 0, < 2.7.1+dfsg-1
• HIGH7.8Ansible Arbitrary Code Execution
  from 0, < 2.6.1+dfsg-1
• HIGH7.8Ansible Improper Input Validation vulnerability
  from 0, < 2.6.1+dfsg-1
• HIGH7.8Path Traversal in Ansible
  from 0, < 2.9.7+dfsg-1
• HIGH7.8Link Following in ansible
  from 0, < 2.0.1.0-2
• HIGH7.5Ansible leaks password to logs
  from 0, < 2.10.7+merged+base+2.10.17+dfsg-0+deb11u1
• HIGH7.5Ansible Exposes Sensitive Information
  from 0, < 2.10.7+merged+base+2.10.8+dfsg-1
• HIGH7.5Ansible unsafe evaluation of some strings
  from 0, < 1.5.4+dfsg-1
• HIGH7.5ansible - security update
  from 0, < 1.9.2+dfsg-1
• HIGH7.5ansible - security update
  from 0, < 1.7.2+dfsg-2+deb8u2
• HIGH7.5Ansible apt_key module does not properly verify key fingerprint
  from 0, < 2.2.0.0-1
• HIGH7.4OS Command Injection in ansible
  from 0
• HIGH7.4Ansible fails to cache SSH host keys
  from 0, < 1.3.4+dfsg-1
• HIGH7.3A local privilege escalation vulnerability was found in the ansible.posix authorized_key module.
  from 0
• HIGH7.3OS Command Injection and Improper Input Validation in ansible
  from 0, < 2.9.4+dfsg-1
• HIGH7.1Improper Input Validation and Command Injection in Ansible
  from 0, < 2.10.7+merged+base+2.10.17+dfsg-0+deb11u1
• HIGH7.1Improper Verification of Cryptographic Signature in ansible
  from 0, < 2.9.13+dfsg-1
• HIGH7.1Code Injection, Race Condition, and Execution with Unnecessary Privileges in Ansible
  from 0, < 2.9.7+dfsg-1
• MEDIUM6.6Ansible template injection vulnerability
  from 0, < 2.10.7+merged+base+2.10.17+dfsg-0+deb11u1
• MEDIUM6.5Ansible may expose private key
  from 0, < 2.10.7+merged+base+2.10.17+dfsg-0+deb11u1
• MEDIUM6.5ansible - security update
  from 0, < 2.7.7+dfsg-1+deb10u2
• MEDIUM6.5ansible - security update
  from 0, < 2.8.6+dfsg-1
• MEDIUM6.5Exposure of Sensitive Information to an Unauthorized Actor in ansible
  from 0, < 2.8.6+dfsg-1
• MEDIUM6.5Inclusion of Sensitive Information in Log Files and Improper Output Neutralization for Logs in Ansible
  from 0, < 2.9.2+dfsg-1
• MEDIUM6.3ansible-core Incorrect Authorization vulnerability
  from 0, < 2.10.7+merged+base+2.10.17+dfsg-0+deb11u2
• MEDIUM6.3Ansible symlink attack vulnerability
  from 0, < 2.10.7+merged+base+2.10.17+dfsg-0+deb11u1
• MEDIUM5.9ansible - security update
  from 0, < 2.2.1.0-2+deb9u1
• MEDIUM5.9ansible - security update
  from 0, < 2.5.5+dfsg-1
• MEDIUM5.6Externally Controlled Reference to a Resource in Another Sphere, Improper Input Validation, and External Control of File Name or Path in Ansible
  from 0, < 2.9.4+dfsg-1
• MEDIUM5.5Ansible Community General Collection is vulnerable to exposure of sensitive information
  from 0, < 12.0.0+dfsg-0+deb13u1
• MEDIUM5.5ansible - security update
  from 0, < 2.10.7+merged+base+2.10.17+dfsg-0+deb11u4
• MEDIUM5.5ansible - security update
  from 0, < 2.10.7+merged+base+2.10.17+dfsg-0+deb11u4
• MEDIUM5.5ansible - security update
  from 0, < 2.10.7+merged+base+2.10.17+dfsg-0+deb11u2
• MEDIUM5.5ansible - security update
  from 0, < 2.10.7+merged+base+2.10.17+dfsg-0+deb11u2
• MEDIUM5.5Ansible leaks sensitive information to logs when told not to
  from 0, < 2.8.6+dfsg-1
• MEDIUM5.5Ansible discloses credential information
  from 0, < 1.5.5+dfsg-1
• MEDIUM5.5Ansible sets unsafe permissions for sources.list
  from 0, < 1.5.5+dfsg-1
• MEDIUM5.5Ansible Sensitive Files Are Locally Readable
  from 0, < 1.5.5+dfsg-1
• MEDIUM5.5Insertion of Sensitive Information into Log File in ansible
  from 0, < 2.10.7-1
• MEDIUM5.5Ansible discloses sensitive information in traceback error message
  from 0, < 2.10.7+merged+base+2.10.17+dfsg-0+deb11u1
• MEDIUM5.5Improper Output Neutralization and Improper Encoding or Escaping of Output for Logs in ansible
  from 0, < 2.9.13+dfsg-1
• MEDIUM5.5Insertion of Sensitive Information into Log File and Improper Output Neutralization for Logs in ansible
  from 0, < 2.9.13+dfsg-1
• MEDIUM5.5Insertion of Sensitive Information into Log File in ansible
  from 0, < 2.10.7-1
• MEDIUM5.5Insertion of Sensitive Information into Log File in ansible
  from 0, < 2.10.7-1
• MEDIUM5.5Exposure of Resource to Wrong Sphere and Insecure Temporary File in Ansible
  from 0, < 2.9.7+dfsg-1
• MEDIUM5.5Insertion of Sensitive Information into Log File, Invocation of Process Using Visible Sensitive Information, and Exposure of Sensitive Information to an Unauthorized Actor in Ansible
  from 0, < 2.9.16+dfsg-1
• MEDIUM5.5A flaw was found in several ansible modules, where parameters containing credentials, such as secrets, were being logged in plain-text on m…
  from 0, < 2.10.7+merged+base+2.10.8+dfsg-1
• MEDIUM5.4ansible - security update
  from 0, < 2.7.7+dfsg-1+deb10u1
• MEDIUM5.4ansible - security update
  from 0, < 2.8.3+dfsg-1
• MEDIUM5.3Ansible sensitive information disclosure
  from 0, < 2.7.6+dfsg-1
• MEDIUM5.2Path Traversal in Ansible
  from 0, < 2.9.7+dfsg-1
• MEDIUM5.0Ansible-core information disclosure flaw
  from 0, < 2.10.7+merged+base+2.10.17+dfsg-0+deb11u1
• MEDIUM5.0Exposure of Resource to Wrong Sphere and Insecure Temporary File in Ansible
  from 0, < 2.9.13+dfsg-1
• MEDIUM5.0Insufficiently random values in Ansible
  from 0, < 2.9.6+dfsg-1
• MEDIUM5.0Ansible vulnerable to Exposure of Resource to Wrong Sphere and Insecure Temporary File
  from 0, < 2.9.7+dfsg-1
• MEDIUM5.0Exposure of Sensitive Information to an Unauthorized Actor in ansible
  from 0, < 2.9.7+dfsg-1
• MEDIUM4.9Improper Input Validation in ansible
  from 0, < 2.2.0.0-4
• MEDIUM4.7Exposure of Sensitive Information to an Unauthorized Actor and Insecure Temporary File in Ansible
  from 0, < 2.9.7+dfsg-1
• MEDIUM4.6Path Traversal in Ansible
  from 0, < 2.9.7+dfsg-1
• MEDIUM4.2Ansible Path Traversal vulnerability
  from 0, < 2.7.7+dfsg-1
• MEDIUM4.0Ansible uses a socket with predictable filename in /tmp
  from 0, < 1.3.4+dfsg-1
• LOW3.9Argument Injection in Ansible
  from 0
• LOW3.9Exposure of Sensitive Information to an Unauthorized Actor in Ansible
  from 0, < 2.9.7+dfsg-1
• LOW3.3Incorrect Permission Assignment for Critical Resource in Ansible
  from 0