Lucene search
Veracode Vulnerability DatabaseVERACODE:22061HistoryDec 02, 2019 - 7:55 a.m.
OS Command Injection
2019-12-0207:55:53
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
0.0005 Low
EPSS
Percentile
16.0%
ansible is vulnerable to OS command injection. The boot function in solaris_zone.py accepts an unsanitized zone name into an os.system() call which would potentially allow an attacker to inject and execute arbitrary OS commands.
Related
prion
prion
Command injection
2020-08-26 03:15:00
nvd
nvd
CVE-2019-14904
2020-08-26 03:15:11
alpinelinux
alpinelinux
CVE-2019-14904
2020-08-26 03:15:11
cvelist
cvelist
CVE-2019-14904
2020-08-25 23:21:47
redhatcve
redhatcve
CVE-2019-14904
2019-11-27 18:47:54
osv
osv
PYSEC-2020-161
2020-08-26 03:15:00
CVE-2019-14904
2020-08-26 03:15:11
OS Command Injection and Improper Input Validation in ansible
2021-04-20 16:44:22
ubuntucve
ubuntucve
CVE-2019-14904
2020-08-26 00:00:00
cve
cve
CVE-2019-14904
2020-08-26 03:15:11
debiancve
debiancve
CVE-2019-14904
2020-08-26 03:15:11
github
github
OS Command Injection and Improper Input Validation in ansible
2021-04-20 16:44:22
nessus
nessus
RHEL 7 / 8 : Ansible security update (2.8.8) (Moderate) (RHSA-2020:0216)
2020-01-27 00:00:00
RHEL 7 / 8 : Ansible security update (2.9.4) (Moderate) (RHSA-2020:0218)
2020-01-27 00:00:00
Fedora 31 : ansible (2020-caf7f7d0d9)
2020-01-31 00:00:00
redhat
redhat
(RHSA-2020:0218) Moderate: Ansible security and bug fix update (2.9.4)
2020-01-23 16:26:22
(RHSA-2020:0216) Moderate: Ansible security and bug fix update (2.8.8)
2020-01-23 16:25:00
(RHSA-2020:0217) Moderate: Ansible security and bug fix update (2.7.16)
2020-01-23 16:26:02
mageia
mageia
Updated ansible package fixes security vulnerabilities
2020-01-28 10:52:40
fedora
fedora
[SECURITY] Fedora 31 Update: ansible-2.9.3-1.fc31
2020-01-31 02:03:49
[SECURITY] Fedora 30 Update: ansible-2.9.3-1.fc30
2020-01-31 01:14:23
openvas
openvas
Fedora: Security Advisory for ansible (FEDORA-2020-caf7f7d0d9)
2020-01-31 00:00:00
Mageia: Security Advisory (MGASA-2020-0060)
2022-01-28 00:00:00
Debian: Security Advisory (DLA-2535-1)
2021-01-29 00:00:00
debian
debian
[SECURITY] [DLA 2535-1] ansible security update
2021-01-27 21:14:42
[SECURITY] [DSA 4950-1] ansible security update
2021-08-07 09:26:39
suse
suse
Security update for ansible (moderate)
2020-04-13 00:00:00
Security update for ansible (moderate)
2020-04-16 00:00:00
Security update for ansible (important)
2022-03-16 00:00:00