Every CVE whose affected-product data names Redhat Ansible Tower, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (64)
CVE-2018-16879 — CVSS 9.8 (critical): Ansible Tower before version 3.3.3 does not set a secure channel as it is using the default insecure configuration channel settings for…
CVE-2015-9262 — CVSS 9.8 (critical): _XcursorThemeInherits in library.c in libXcursor before 1.1.15 allows remote attackers to cause denial of service or potentially code…
CVE-2018-12910 — CVSS 9.8 (critical): The get_cookies function in soup-cookie-jar.c in libsoup 2.63.2 allows attackers to have unspecified impact via an empty hostname.
CVE-2018-17456 — CVSS 9.8 (critical): Git before 2.14.5, 2.15.x before 2.15.3, 2.16.x before 2.16.5, 2.17.x before 2.17.2, 2.18.x before 2.18.1, and 2.19.x before 2.19.1 allows…
CVE-2018-14681 — CVSS 8.8 (high): An issue was discovered in kwajd_read_headers in mspack/kwajd.c in libmspack before 0.7alpha. Bad KWAJ file header extensions could cause a…
CVE-2021-4112 — CVSS 8.8 (high): A flaw was found in ansible-tower where the default installation is vulnerable to job isolation escape. This flaw allows an attacker to…
CVE-2018-1000805 — CVSS 8.8 (high): Paramiko version 2.4.1, 2.3.2, 2.2.3, 2.1.5, 2.0.8, 1.18.5, 1.17.6 contains a Incorrect Access Control vulnerability in SSH server that can…
CVE-2018-10884 — CVSS 8.8 (high): Ansible Tower before versions 3.1.8 and 3.2.6 is vulnerable to cross-site request forgery (CSRF) in awx/api/authentication.py. An attacker…
CVE-2018-1104 — CVSS 8.8 (high): Ansible Tower through version 3.2.3 has a vulnerability that allows users only with access to define variables for a job template to…
CVE-2018-14682 — CVSS 8.8 (high): An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the TOLOWER() macro for CHM…
CVE-2017-12148 — CVSS 8.4 (high): A flaw was found in Ansible Tower's interface before 3.1.5 and 3.2.0 with SCM repositories. If a Tower project (SCM repository) definition…
CVE-2019-14890 — CVSS 8.4 (high): A vulnerability was found in Ansible Tower before 3.6.1 where an attacker with low privilege could retrieve usernames and passwords…
CVE-2019-19340 — CVSS 8.2 (high): A flaw was found in Ansible Tower, versions 3.6.x before 3.6.2 and 3.5.x before 3.5.3, where enabling RabbitMQ manager by setting it with…
CVE-2016-7070 — CVSS 8.0 (high): A privilege escalation flaw was found in the Ansible Tower. When Tower before 3.0.3 deploys a PostgreSQL database, it incorrectly…
CVE-2020-10684 — CVSS 7.9 (high): A flaw was found in Ansible Engine, all versions 2.7.x, 2.8.x and 2.9.x prior to 2.7.17, 2.8.9 and 2.9.6 respectively, when using…
CVE-2018-16837 — CVSS 7.8 (high): Ansible "User" module leaks any data which is passed on as a parameter to ssh-keygen. This could lean in undesirable situations such as…
CVE-2021-20228 — CVSS 7.5 (high): A flaw was found in the Ansible Engine 2.9.18, where sensitive info is not masked by default and is not protected by the no_log feature…
CVE-2018-1060 — CVSS 7.5 (high): python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is vulnerable to catastrophic backtracking in pop3lib's apop() method…
CVE-2020-1737 — CVSS 7.5 (high): A flaw was found in Ansible 2.7.17 and prior, 2.8.9 and prior, and 2.9.6 and prior when using the Extract-Zip function from the win_unzip…
CVE-2020-1734 — CVSS 7.4 (high): A flaw was found in the pipe lookup plugin of ansible. Arbitrary commands can be run, when the pipe lookup plugin uses subprocess.Popen()…
CVE-2018-1101 — CVSS 7.2 (high): Ansible Tower before version 3.2.4 has a flaw in the management of system and organization administrators that allows for privilege…
CVE-2019-3869 — CVSS 7.2 (high): When running Tower before 3.4.3 on OpenShift or Kubernetes, application credentials are exposed to playbook job runs via environment…
CVE-2020-14365 — CVSS 7.1 (high): A flaw was found in the Ansible Engine, in ansible-engine 2.8.x before 2.8.15 and ansible-engine 2.9.x before 2.9.13, when installing…
CVE-2021-3583 — CVSS 7.1 (high): A flaw was found in Ansible, where a user's controller is vulnerable to template injection. This issue can occur through facts used in the…
CVE-2020-10709 — CVSS 7.1 (high): A security flaw was found in Ansible Tower when requesting an OAuth2 token with an OAuth2 application. Ansible Tower uses the token to…
CVE-2021-20253 — CVSS 6.7 (medium): A flaw was found in ansible-tower. The default installation is vulnerable to Job Isolation escape allowing an attacker to elevate the…
CVE-2018-14680 — CVSS 6.5 (medium): An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. It does not reject blank CHM filenames.
CVE-2018-1061 — CVSS 6.5 (medium): python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is vulnerable to catastrophic backtracking in the difflib.IS_LINE_JUNK…
CVE-2020-10782 — CVSS 6.5 (medium): An exposure of sensitive information flaw was found in Ansible version 3.7.0. Sensitive information, such tokens and other secrets could be…
CVE-2018-10733 — CVSS 6.5 (medium): There is a heap-based buffer over-read in the function ft_font_face_hash of gxps-fonts.c in libgxps through 0.3.0. A crafted input will…
CVE-2018-14679 — CVSS 6.5 (medium): An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the CHM PMGI/PMGL chunk number…
CVE-2018-13988 — CVSS 6.5 (medium): Poppler through 0.62 contains an out of bounds read vulnerability due to an incorrect memory access that is not mapped in its memory space…
CVE-2018-10768 — CVSS 6.5 (medium): There is a NULL pointer dereference in the AnnotPath::getCoordsLength function in Annot.h in an Ubuntu package for Poppler 0.24.5. A…
CVE-2019-14864 — CVSS 6.5 (medium): Ansible, versions 2.9.x before 2.9.1, 2.8.x before 2.8.7 and Ansible versions 2.7.x before 2.7.15, is not respecting the flag no_log set it…
CVE-2018-10767 — CVSS 6.5 (medium): There is a stack-based buffer over-read in calling GLib in the function gxps_images_guess_content_type of gxps-images.c in libgxps through…
CVE-2020-14337 — CVSS 5.8 (medium): A data exposure flaw was found in Tower, where sensitive data was revealed from the HTTP return error codes. This flaw allows an…
CVE-2019-14905 — CVSS 5.6 (medium): A vulnerability was found in Ansible Engine versions 2.9.x before 2.9.3, 2.8.x before 2.8.8, 2.7.x before 2.7.16 and earlier, where in…
CVE-2019-14858 — CVSS 5.5 (medium): A vulnerability was found in Ansible engine 2.x up to 2.8 and Ansible tower 3.x up to 3.5. When a module has an argument_spec with sub…
CVE-2017-18267 — CVSS 5.5 (medium): The FoFiType1C::cvtGlyph function in fofi/FoFiType1C.cc in Poppler through 0.64.0 allows remote attackers to cause a denial of service…
CVE-2019-19341 — CVSS 5.5 (medium): A flaw was found in Ansible Tower, versions 3.6.x before 3.6.2, where files in '/var/backup/tower' are left world-readable. These files…
CVE-2019-3835 — CVSS 5.5 (medium): It was found that the superexec operator was available in the internal dictionary in ghostscript before 9.27. A specially crafted…
CVE-2019-3838 — CVSS 5.5 (medium): It was found that the forceput operator could be extracted from the DefineResource method in ghostscript before 9.27. A specially crafted…
CVE-2020-14327 — CVSS 5.5 (medium): A Server-side request forgery (SSRF) flaw was found in Ansible Tower in versions before 3.6.5 and before 3.7.2. Functionality on the Tower…
CVE-2021-20178 — CVSS 5.5 (medium): A flaw was found in ansible module where credentials are disclosed in the console log by default and not protected by the security feature…
CVE-2021-20191 — CVSS 5.5 (medium): A flaw was found in ansible. Credentials, such as secrets, are being disclosed in console log by default and not protected by no_log…
CVE-2021-3447 — CVSS 5.5 (medium): A flaw was found in several ansible modules, where parameters containing credentials, such as secrets, were being logged in plain-text on…
CVE-2019-19342 — CVSS 5.3 (medium): A flaw was found in Ansible Tower, versions 3.6.x before 3.6.2 and 3.5.x before 3.5.4, when /websocket is requested and the password…
CVE-2017-7528 — CVSS 5.2 (medium): Ansible Tower as shipped with Red Hat CloudForms Management Engine 5 is vulnerable to CRLF Injection. It was found that X-Forwarded-For…
CVE-2020-10691 — CVSS 5.2 (medium): An archive traversal flaw was found in all ansible-engine versions 2.9.x prior to 2.9.7, when running ansible-galaxy collection install…
CVE-2020-10744 — CVSS 5.0 (medium): An incomplete fix was found for the fix of the flaw CVE-2020-1733 ansible: insecure temporary directory when running become_user from…
CVE-2020-1733 — CVSS 5.0 (medium): A race condition flaw was found in Ansible Engine 2.7.17 and prior, 2.8.9 and prior, 2.9.6 and prior when running a playbook with an…
CVE-2020-1746 — CVSS 5.0 (medium): A flaw was found in the Ansible Engine affecting Ansible Engine versions 2.7.x before 2.7.17 and 2.8.x before 2.8.11 and 2.9.x before 2.9.7…
CVE-2020-1753 — CVSS 5.0 (medium): A security flaw was found in Ansible Engine, all Ansible 2.7.x versions prior to 2.7.17, all Ansible 2.8.x versions prior to 2.8.11 and all…
CVE-2020-10685 — CVSS 5.0 (medium): A flaw was found in Ansible Engine affecting Ansible Engine versions 2.7.x before 2.7.17 and 2.8.x before 2.8.11 and 2.9.x before 2.9.7 as…
CVE-2018-0495 — CVSS 4.7 (medium): Libgcrypt before 1.7.10 and 1.8.x before 1.8.3 allows a memory-cache side-channel attack on ECDSA signatures that can be mitigated through…
CVE-2020-10697 — CVSS 4.4 (medium): A flaw was found in Ansible Tower when running Openshift. Tower runs a memcached, which is accessed via TCP. An attacker can take advantage…
CVE-2020-1735 — CVSS 4.2 (medium): A flaw was found in the Ansible Engine when the fetch module is used. An attacker could intercept the module, inject a new path, and then…
CVE-2020-1740 — CVSS 3.9 (low): A flaw was found in Ansible Engine when using Ansible Vault for editing encrypted files. When a user executes "ansible-vault edit", another…
CVE-2020-1738 — CVSS 3.9 (low): A flaw was found in Ansible Engine when the module package or service is used and the parameter 'use' is not specified. If a previous task…
CVE-2020-1739 — CVSS 3.9 (low): A flaw was found in Ansible 2.7.16 and prior, 2.8.8 and prior, and 2.9.5 and prior when a password is set with the argument "password" of…
CVE-2020-14328 — CVSS 3.3 (low): A flaw was found in Ansible Tower in versions before 3.7.2. A Server Side Request Forgery flaw can be abused by supplying a URL which could…
CVE-2020-14329 — CVSS 3.3 (low): A data exposure flaw was found in Ansible Tower in versions before 3.7.2, where sensitive data can be exposed from the /api/v2/labels/…
CVE-2020-10698 — CVSS 3.3 (low): A flaw was found in Ansible Tower when running jobs. This flaw allows an attacker to access the stdout of the executed jobs which are run…
CVE-2020-1736 — CVSS 2.2 (low): A flaw was found in Ansible Engine when a file is moved using atomic_move primitive as the file mode cannot be specified. This sets the…