ansible-runner 2.0.0 default temporary files written to world R/W locations

2022-08-2400:00:29

Google

osv.dev

ansible-runner

vulnerability

unauthorized access

confidentiality

integrity

temporary files

configuration

attacker

6.6 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

0.0004 Low

EPSS

Percentile

15.5%

JSON

A flaw was found in ansible-runner where the default temporary files configuration in ansible-2.0.0 are written to world R/W locations. This flaw allows an attacker to pre-create the directory, resulting in reading private information or forcing ansible-runner to write files as the legitimate user in a place they did not expect. The highest threat from this vulnerability is to confidentiality and integrity.

CPENameOperatorVersion
ansible-runnereq2.0.2
ansible-runnereq2.1.0.0a1
ansible-runnereq2.0.4
ansible-runnereq2.1.0.0a2
ansible-runnereq2.0.1
ansible-runnereq2.1.0.0b1
ansible-runnereq2.0.3
ansible-runnereq2.0.0

Name	Operator	Version
ansible-runner	eq	2.0.2
ansible-runner	eq	2.1.0.0a1
ansible-runner	eq	2.0.4
ansible-runner	eq	2.1.0.0a2
ansible-runner	eq	2.0.1
ansible-runner	eq	2.1.0.0b1
ansible-runner	eq	2.0.3
ansible-runner	eq	2.0.0