CVE-2021-3681
- EPSS 0.04%
- Veröffentlicht 18.04.2022 17:15:15
- Zuletzt bearbeitet 21.11.2024 06:22:08
A flaw was found in Ansible Galaxy Collections. When collections are built manually, any files in the repository directory that are not explicitly excluded via the ``build_ignore`` list in "galaxy.yml" include files in the ``.tar.gz`` file. This cont...
CVE-2021-3583
- EPSS 0.3%
- Veröffentlicht 22.09.2021 12:15:07
- Zuletzt bearbeitet 21.11.2024 06:21:54
A flaw was found in Ansible, where a user's controller is vulnerable to template injection. This issue can occur through facts used in the template if the user is trying to put templates in multi-line YAML strings and the facts being handled do not r...
CVE-2021-20228
- EPSS 0.14%
- Veröffentlicht 29.04.2021 16:15:09
- Zuletzt bearbeitet 21.11.2024 05:46:10
A flaw was found in the Ansible Engine 2.9.18, where sensitive info is not masked by default and is not protected by the no_log feature when using the sub-option feature of the basic.py module. This flaw allows an attacker to obtain sensitive informa...