Lucene search
Veracode Vulnerability DatabaseVERACODE:22593HistoryFeb 28, 2020 - 5:00 a.m.
Remote Code Execution (RCE)
2020-02-2805:00:46
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
16
0.0005 Low
EPSS
Percentile
17.4%
ansible is vulnerable to remote code execution. The vulnerability exists as the package and service modules allows the ansible_facts['pkg_mgr'] and ansible_facts['service_mgr'] facts to be set to a module name such as ansible_collections.namespace.name./tmp/reverse-shell, allowing remote code execution on the managed node.
Related
redhatcve
redhatcve
CVE-2020-1738
2020-02-18 14:30:17
osv
osv
PYSEC-2020-10
2020-03-16 16:15:00
CVE-2020-1738
2020-03-16 16:15:14
Argument Injection in Ansible
2022-02-09 22:00:04
nvd
nvd
CVE-2020-1738
2020-03-16 16:15:14
cve
cve
CVE-2020-1738
2020-03-16 16:15:14
ubuntucve
ubuntucve
CVE-2020-1738
2020-03-16 00:00:00
prion
prion
Design/Logic Flaw
2020-03-16 16:15:00
github
github
Argument Injection in Ansible
2022-02-09 22:00:04
debiancve
debiancve
CVE-2020-1738
2020-03-16 16:15:14
cvelist
cvelist
CVE-2020-1738
2020-03-16 15:08:03
nessus
nessus
Photon OS 2.0: Ansible PHSA-2020-2.0-0226
2020-04-10 00:00:00
Photon OS 3.0: Ansible PHSA-2020-3.0-0078
2020-04-21 00:00:00
GLSA-202006-11 : Ansible: Multiple vulnerabilities
2020-06-17 00:00:00
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-2.0-0226
2020-04-07 00:00:00
Important Photon OS Security Update - PHSA-2020-0226
2020-04-07 00:00:00
Important Photon OS Security Update - PHSA-2020-0078
2020-04-08 00:00:00
gentoo
gentoo
Ansible: Multiple vulnerabilities
2020-06-13 00:00:00
suse
suse
Security update for ansible (important)
2022-03-16 00:00:00