Lucene search
GoogleOSV:CVE-2019-3828HistoryMar 27, 2019 - 1:29 p.m.
CVE-2019-3828
2019-03-2713:29:01
Google
osv.dev
10
0.001 Low
EPSS
Percentile
22.9%
Ansible fetch module before versions 2.5.15, 2.6.14, 2.7.8 has a path traversal vulnerability which allows copying and overwriting files outside of the specified destination in the local ansible controller host, by not restricting an absolute path.
References
lists.opensuse.org/opensuse-security-announce/2019-04/msg00021.html
lists.opensuse.org/opensuse-security-announce/2019-06/msg00077.html
lists.opensuse.org/opensuse-security-announce/2019-08/msg00020.html
packetstormsecurity.com/files/172837/Ansible-Fetch-Path-Traversal.html
access.redhat.com/errata/RHSA-2019:3744
access.redhat.com/errata/RHSA-2019:3789
bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3828
github.com/ansible/ansible/pull/52133
usn.ubuntu.com/4072-1/
Related
cve
cve
CVE-2019-3828
2019-03-27 13:29:01
nessus
nessus
Fedora 28 : ansible (2019-c54511eaab)
2019-03-04 00:00:00
RHEL 7 : ansible (RHSA-2019:0433)
2019-03-06 00:00:00
RHEL 7 : ansible (RHSA-2019:0431)
2019-03-06 00:00:00
prion
prion
Path traversal
2019-03-27 13:29:00
veracode
veracode
Directory Traversal
2019-02-21 02:10:32
ubuntucve
ubuntucve
CVE-2019-3828
2019-03-27 00:00:00
redhat
redhat
(RHSA-2019:0432) Moderate: ansible security and bug fix update
2019-02-28 08:17:08
(RHSA-2019:0430) Moderate: ansible security and bug fix update
2019-02-28 08:17:06
(RHSA-2019:0431) Moderate: ansible security and bug fix update
2019-02-28 08:17:07
fedora
fedora
[SECURITY] Fedora 29 Update: ansible-2.7.8-1.fc29
2019-03-01 02:41:12
[SECURITY] Fedora 29 Update: ansible-2.8.1-1.fc29
2019-06-18 02:21:05
[SECURITY] Fedora 28 Update: ansible-2.7.8-1.fc28
2019-03-03 03:24:34
redhatcve
redhatcve
CVE-2019-3828
2019-10-09 23:45:57
nvd
nvd
CVE-2019-3828
2019-03-27 13:29:01
github
github
Ansible Path Traversal vulnerability
2019-04-15 16:19:19
alpinelinux
alpinelinux
CVE-2019-3828
2019-03-27 13:29:01
osv
osv
Ansible Path Traversal vulnerability
2019-04-15 16:19:19
PYSEC-2019-5
2019-03-27 13:29:00
ansible - security update
2019-02-19 00:00:00
openvas
openvas
Fedora Update for ansible FEDORA-2019-7d1a63acc8
2019-05-07 00:00:00
Fedora Update for ansible FEDORA-2019-d438eff890
2019-06-19 00:00:00
Mageia: Security Advisory (MGASA-2019-0114)
2022-01-28 00:00:00
debiancve
debiancve
CVE-2019-3828
2019-03-27 13:29:01
cvelist
cvelist
CVE-2019-3828
2019-03-27 00:00:00
mageia
mageia
Updated ansible packages fix security vulnerability
2019-03-21 19:36:46
suse
suse
Security update for ansible (moderate)
2019-06-27 00:00:00
Security update for ansible (moderate)
2019-08-14 00:00:00
Security update for ansible (moderate)
2019-04-03 00:00:00
debian
debian
[SECURITY] [DSA 4396-1] ansible security update
2019-02-19 21:54:58
photon
photon
Critical Photon OS Security Update - PHSA-2019-0010
2019-04-19 00:00:00
Critical Photon OS Security Update - PHSA-2019-3.0-0010
2019-04-19 00:00:00
ubuntu
ubuntu
Ansible vulnerabilities
2019-07-24 00:00:00