Known Vulnerabilities for Ansible by Redhat
Listed below are 10 of the newest known vulnerabilities associated with "Ansible" by "Redhat".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-20191 | A flaw was found in ansible. Credentials, such as secrets, are being disclosed in console log by default and not protected by... | 5.5 - MEDIUM | 2021-05-26 | 2023-12-28 |
| CVE-2021-20180 | A flaw was found in ansible module where credentials are disclosed in the console log by default and not protected by the sec... | 5.5 - MEDIUM | 2022-03-16 | 2022-03-22 |
| CVE-2021-20178 | A flaw was found in ansible module where credentials are disclosed in the console log by default and not protected by the sec... | 5.5 - MEDIUM | 2021-05-26 | 2023-12-28 |
| CVE-2021-3447 | A flaw was found in several ansible modules, where parameters containing credentials, such as secrets, were being logged in p... | 5.5 - MEDIUM | 2021-04-01 | 2023-12-28 |
| CVE-2020-1740 | A flaw was found in Ansible Engine when using Ansible Vault for editing encrypted files. When a user executes "ansible-vault ... | 4.7 - MEDIUM | 2020-03-16 | 2023-11-07 |
| CVE-2020-1739 | A flaw was found in Ansible 2.7.16 and prior, 2.8.8 and prior, and 2.9.5 and prior when a password is set with the argument "... | 3.9 - LOW | 2020-03-12 | 2023-11-07 |
| CVE-2020-1738 | A flaw was found in Ansible Engine when the module package or service is used and the parameter 'use' is not specified. If a ... | 3.9 - LOW | 2020-03-16 | 2023-11-07 |
| CVE-2020-1736 | A flaw was found in Ansible Engine when a file is moved using atomic_move primitive as the file mode cannot be specified. Thi... | 3.3 - LOW | 2020-03-16 | 2023-11-07 |
| CVE-2020-1735 | A flaw was found in the Ansible Engine when the fetch module is used. An attacker could intercept the module, inject a new pa... | 4.6 - MEDIUM | 2020-03-16 | 2023-11-07 |
| CVE-2020-1733 | A race condition flaw was found in Ansible Engine 2.7.17 and prior, 2.8.9 and prior, 2.9.6 and prior when running a playbook ... | 5 - MEDIUM | 2020-03-11 | 2023-11-07 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Redhat | Ansible | 2.9.9 | All | All | All |
| Application | Redhat | Ansible | 2.9.6 | All | All | All |
| Application | Redhat | Ansible | 2.9.5 | All | All | All |
| Application | Redhat | Ansible | 2.9.4 | All | All | All |
| Application | Redhat | Ansible | 2.9.3 | All | All | All |
| Application | Redhat | Ansible | 2.9.2 | All | All | All |
| Application | Redhat | Ansible | 2.9.10 | All | All | All |
| Application | Redhat | Ansible | 2.9.1 | All | All | All |
| Application | Redhat | Ansible | 2.9.0 | - | All | All |
| Application | Redhat | Ansible | 2.9.0 | b1 | All | All |
| Application | Redhat | Ansible | 2.9.0 | rc1 | All | All |
| Application | Redhat | Ansible | 2.9.0 | rc2 | All | All |
| Application | Redhat | Ansible | 2.9.0 | rc3 | All | All |
| Application | Redhat | Ansible | 2.9.0 | rc4 | All | All |
| Application | Redhat | Ansible | 2.9.0 | rc5 | All | All |
| Application | Redhat | Ansible | 2.8.9 | All | All | All |
| Application | Redhat | Ansible | 2.8.8 | All | All | All |
| Application | Redhat | Ansible | 2.8.7 | All | All | All |
| Application | Redhat | Ansible | 2.8.6 | All | All | All |
| Application | Redhat | Ansible | 2.8.5 | All | All | All |