CVE-2025-14010
- EPSS 0.01%
- Veröffentlicht 04.12.2025 09:51:55
- Zuletzt bearbeitet 04.12.2025 17:15:08
A flaw was found in ansible-collection-community-general. This vulnerability allows for information exposure (IE) of sensitive credentials, specifically plaintext passwords, via verbose output when running Ansible with debug modes. Attackers with acc...
CVE-2023-4237
- EPSS 0.06%
- Veröffentlicht 04.10.2023 15:15:12
- Zuletzt bearbeitet 21.11.2024 08:34:41
A flaw was found in the Ansible Automation Platform. When creating a new keypair, the ec2_key module prints out the private key directly to the standard output. This flaw allows an attacker to fetch those keys from the log files, compromising the sys...
CVE-2022-3697
- EPSS 0.13%
- Veröffentlicht 28.10.2022 16:15:16
- Zuletzt bearbeitet 21.11.2024 07:20:03
A flaw was found in Ansible in the amazon.aws collection when using the tower_callback parameter from the amazon.aws.ec2_instance module. This flaw allows an attacker to take advantage of this issue as the module is handling the parameter insecurely,...