7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L
0.001 Low
EPSS
Percentile
31.0%
Ansible is a simple model-driven configuration management, multi-node deployment, and remote-task execution system. Ansible works over SSH and does not require any software or daemons to be installed on remote nodes. Extension modules can be written in any language and are transferred to managed machines automatically.
Ansible Tower helps you scale IT automation, manage complex deployments and speed productivity. Centralize and control your IT infrastructure with a visual dashboard, role-based access control, job scheduling, integrated notifications and graphical inventory management. And Ansible Tower’s REST API and CLI make it easy to embed Ansible Tower into existing tools and processes.
Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual environments. CloudForms Management Engine is built on Ruby on Rails, a model-view-controller (MVC) framework for web application development. Action Pack implements the controller and the view components.
Security Fix(es):
This issue was discovered by Gellert Kis (Red Hat).
Additional Changes:
This update also fixes several bugs and adds various enhancements. Documentation for these changes is available from the Release Notes document linked to in the References section.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 7 | x86_64 | postgresql94-test | < 9.4.15-3PGDG.el7at | postgresql94-test-9.4.15-3PGDG.el7at.x86_64.rpm |
RedHat | 7 | noarch | ansible | < 2.4.3.0-1.el7ae | ansible-2.4.3.0-1.el7ae.noarch.rpm |
RedHat | 7 | x86_64 | postgresql94 | < 9.4.15-3PGDG.el7at | postgresql94-9.4.15-3PGDG.el7at.x86_64.rpm |
RedHat | 7 | x86_64 | postgresql94-pltcl | < 9.4.15-3PGDG.el7at | postgresql94-pltcl-9.4.15-3PGDG.el7at.x86_64.rpm |
RedHat | 7 | x86_64 | python-crypto-debuginfo | < 2.6.1-16.el7at | python-crypto-debuginfo-2.6.1-16.el7at.x86_64.rpm |
RedHat | 7 | noarch | python-paramiko-doc | < 2.1.1-2.el7ae | python-paramiko-doc-2.1.1-2.el7ae.noarch.rpm |
RedHat | 7 | x86_64 | postgresql94-contrib | < 9.4.15-3PGDG.el7at | postgresql94-contrib-9.4.15-3PGDG.el7at.x86_64.rpm |
RedHat | 7 | x86_64 | cfme-appliance-debuginfo | < 5.8.3.4-1.el7cf | cfme-appliance-debuginfo-5.8.3.4-1.el7cf.x86_64.rpm |
RedHat | 7 | x86_64 | postgresql94-plpython | < 9.4.15-3PGDG.el7at | postgresql94-plpython-9.4.15-3PGDG.el7at.x86_64.rpm |
RedHat | 7 | x86_64 | ansible-tower-setup | < 3.1.5-3.el7at | ansible-tower-setup-3.1.5-3.el7at.x86_64.rpm |
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L
0.001 Low
EPSS
Percentile
31.0%