Known Vulnerabilities for Ansible Automation Platform by Redhat
Listed below are 6 of the newest known vulnerabilities associated with "Ansible Automation Platform" by "Redhat".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-20228 | A flaw was found in the Ansible Engine 2.9.18, where sensitive info is not masked by default and is not protected by the no_l... | 7.5 - HIGH | 2021-04-29 | 2023-11-07 |
| CVE-2021-4112 | A flaw was found in ansible-tower where the default installation is vulnerable to job isolation escape. This flaw allows an a... | 8.8 - HIGH | 2022-08-25 | 2023-02-12 |
| CVE-2021-3681 | A flaw was found in Ansible Galaxy Collections. When collections are built manually, any files in the repository directory th... | 5.5 - MEDIUM | 2022-04-18 | 2023-11-07 |
| CVE-2021-3583 | A flaw was found in Ansible, where a user's controller is vulnerable to template injection. This issue can occur through fact... | 7.1 - HIGH | 2021-09-22 | 2023-12-28 |
| CVE-2021-3533 | A flaw was found in Ansible if an ansible user sets ANSIBLE_ASYNC_DIR to a subdirectory of a world writable directory. When t... | Not Provided | 2021-06-09 | 2024-01-23 |
| CVE-2021-3532 | A flaw was found in Ansible where the secret information present in async_files are getting disclosed when the user changes t... | Not Provided | 2021-06-09 | 2024-01-15 |