Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:pypi/ansible@0
Typepypi
Namespace
Nameansible
Version0
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version12.0.0
Latest_non_vulnerable_version12.2.0
Affected_by_vulnerabilities
0
url VCID-ae1r-yq1g-rkem
vulnerability_id VCID-ae1r-yq1g-rkem
summary A flaw was found in Ansible 2.7.17 and prior, 2.8.9 and prior, and 2.9.6 and prior when using the Extract-Zip function from the win_unzip module as the extracted file(s) are not checked if they belong to the destination folder. An attacker could take advantage of this flaw by crafting an archive anywhere in the file system, using a path traversal. This issue is fixed in 2.10.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1737.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1737.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-1737
reference_id
reference_type
scores
0
value 0.00119
scoring_system epss
scoring_elements 0.30814
published_at 2026-04-18T12:55:00Z
1
value 0.00119
scoring_system epss
scoring_elements 0.30807
published_at 2026-04-01T12:55:00Z
2
value 0.00119
scoring_system epss
scoring_elements 0.30834
published_at 2026-04-16T12:55:00Z
3
value 0.00119
scoring_system epss
scoring_elements 0.30802
published_at 2026-04-13T12:55:00Z
4
value 0.00119
scoring_system epss
scoring_elements 0.30848
published_at 2026-04-12T12:55:00Z
5
value 0.00119
scoring_system epss
scoring_elements 0.3089
published_at 2026-04-11T12:55:00Z
6
value 0.00119
scoring_system epss
scoring_elements 0.30889
published_at 2026-04-09T12:55:00Z
7
value 0.00119
scoring_system epss
scoring_elements 0.30858
published_at 2026-04-08T12:55:00Z
8
value 0.00119
scoring_system epss
scoring_elements 0.308
published_at 2026-04-07T12:55:00Z
9
value 0.00119
scoring_system epss
scoring_elements 0.30983
published_at 2026-04-04T12:55:00Z
10
value 0.00119
scoring_system epss
scoring_elements 0.30936
published_at 2026-04-02T12:55:00Z
11
value 0.00156
scoring_system epss
scoring_elements 0.36272
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-1737
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1737
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1737
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1737
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1737
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://github.com/advisories/GHSA-893h-35v4-mxqx
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
3
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/advisories/GHSA-893h-35v4-mxqx
6
reference_url https://github.com/ansible/ansible/issues/67795
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/issues/67795
7
reference_url https://github.com/ansible/ansible/pull/67799
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/pull/67799
8
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2020-9.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2020-9.yaml
9
reference_url https://github.com/samdoran/ansible
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/samdoran/ansible
10
reference_url https://github.com/samdoran/ansible/commit/1de638b4d38d6d916588e2ad48d01f90dab8c36d
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/samdoran/ansible/commit/1de638b4d38d6d916588e2ad48d01f90dab8c36d
11
reference_url https://github.com/samdoran/ansible/commit/aaf549d7870b8687209a3282841b59207735b676
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/samdoran/ansible/commit/aaf549d7870b8687209a3282841b59207735b676
12
reference_url https://github.com/samdoran/ansible/commit/b60aa26e2313a8d52c0e0d3fd01696e797605b72
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/samdoran/ansible/commit/b60aa26e2313a8d52c0e0d3fd01696e797605b72
13
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FWDK3QUVBULS3Q3PQTGEKUQYPSNOU5M3
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FWDK3QUVBULS3Q3PQTGEKUQYPSNOU5M3
14
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FWDK3QUVBULS3Q3PQTGEKUQYPSNOU5M3/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FWDK3QUVBULS3Q3PQTGEKUQYPSNOU5M3/
15
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QT27K5ZRGDPCH7GT3DRI3LO4IVDVQUB7
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QT27K5ZRGDPCH7GT3DRI3LO4IVDVQUB7
16
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QT27K5ZRGDPCH7GT3DRI3LO4IVDVQUB7/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QT27K5ZRGDPCH7GT3DRI3LO4IVDVQUB7/
17
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U3IMV3XEIUXL6S4KPLYYM4TVJQ2VNEP2
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U3IMV3XEIUXL6S4KPLYYM4TVJQ2VNEP2
18
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U3IMV3XEIUXL6S4KPLYYM4TVJQ2VNEP2/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U3IMV3XEIUXL6S4KPLYYM4TVJQ2VNEP2/
19
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-1737
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2020-1737
20
reference_url https://security.gentoo.org/glsa/202006-11
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://security.gentoo.org/glsa/202006-11
21
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1802154
reference_id 1802154
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1802154
22
reference_url https://access.redhat.com/errata/RHSA-2020:1541
reference_id RHSA-2020:1541
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1541
23
reference_url https://access.redhat.com/errata/RHSA-2020:1542
reference_id RHSA-2020:1542
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1542
24
reference_url https://access.redhat.com/errata/RHSA-2020:1543
reference_id RHSA-2020:1543
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1543
25
reference_url https://access.redhat.com/errata/RHSA-2020:1544
reference_id RHSA-2020:1544
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1544
fixed_packages
0
url pkg:pypi/ansible@2.7.17
purl pkg:pypi/ansible@2.7.17
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-atun-stks-4kcb
3
vulnerability VCID-axc3-wcsk-q3eg
4
vulnerability VCID-c1xg-s3kx-gkft
5
vulnerability VCID-dzdx-wae5-8ydy
6
vulnerability VCID-e3z2-ydhb-gqfg
7
vulnerability VCID-ezaq-tqd3-4yd1
8
vulnerability VCID-fj2p-7wkh-1fhq
9
vulnerability VCID-geaa-6dxx-tbcw
10
vulnerability VCID-jnmu-c8dt-5yb6
11
vulnerability VCID-js7k-ptm9-2yh1
12
vulnerability VCID-qbdk-hxhg-wbh4
13
vulnerability VCID-r6bb-p28b-8fcn
14
vulnerability VCID-rdwq-93d6-c7b4
15
vulnerability VCID-rg5d-st3d-nbah
16
vulnerability VCID-ujbp-cc1r-wfe9
17
vulnerability VCID-v3h9-1t69-v7a3
18
vulnerability VCID-whyk-3ynn-zyf4
19
vulnerability VCID-x94k-nxyd-27gs
20
vulnerability VCID-xw8r-fn6y-mbhp
21
vulnerability VCID-yeea-n94x-qqch
22
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.17
1
url pkg:pypi/ansible@2.8.0a1
purl pkg:pypi/ansible@2.8.0a1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-a49n-tvnt-p3df
3
vulnerability VCID-ae1r-yq1g-rkem
4
vulnerability VCID-atun-stks-4kcb
5
vulnerability VCID-axc3-wcsk-q3eg
6
vulnerability VCID-b8zs-br97-57av
7
vulnerability VCID-c1xg-s3kx-gkft
8
vulnerability VCID-d4ka-dk4p-kfhb
9
vulnerability VCID-d7ez-s7qb-p3ay
10
vulnerability VCID-dzdx-wae5-8ydy
11
vulnerability VCID-e3z2-ydhb-gqfg
12
vulnerability VCID-ezaq-tqd3-4yd1
13
vulnerability VCID-ezux-6buh-h7h7
14
vulnerability VCID-fj2p-7wkh-1fhq
15
vulnerability VCID-geaa-6dxx-tbcw
16
vulnerability VCID-h1n3-cmte-eugf
17
vulnerability VCID-hqar-fca3-cbht
18
vulnerability VCID-jnmu-c8dt-5yb6
19
vulnerability VCID-jrxz-b168-7ug4
20
vulnerability VCID-js7k-ptm9-2yh1
21
vulnerability VCID-kb5h-116p-33b4
22
vulnerability VCID-nukv-kkws-xkb1
23
vulnerability VCID-qbdk-hxhg-wbh4
24
vulnerability VCID-r6bb-p28b-8fcn
25
vulnerability VCID-rdwq-93d6-c7b4
26
vulnerability VCID-rg5d-st3d-nbah
27
vulnerability VCID-uhg5-zpzt-e3gz
28
vulnerability VCID-ujbp-cc1r-wfe9
29
vulnerability VCID-v3h9-1t69-v7a3
30
vulnerability VCID-whyk-3ynn-zyf4
31
vulnerability VCID-x5e2-7whc-v3fc
32
vulnerability VCID-x94k-nxyd-27gs
33
vulnerability VCID-xg2f-12w4-yqge
34
vulnerability VCID-xw8r-fn6y-mbhp
35
vulnerability VCID-yeea-n94x-qqch
36
vulnerability VCID-yur3-am6j-w7ay
37
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.0a1
2
url pkg:pypi/ansible@2.8.9
purl pkg:pypi/ansible@2.8.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-atun-stks-4kcb
3
vulnerability VCID-axc3-wcsk-q3eg
4
vulnerability VCID-b8zs-br97-57av
5
vulnerability VCID-c1xg-s3kx-gkft
6
vulnerability VCID-d7ez-s7qb-p3ay
7
vulnerability VCID-dzdx-wae5-8ydy
8
vulnerability VCID-e3z2-ydhb-gqfg
9
vulnerability VCID-ezaq-tqd3-4yd1
10
vulnerability VCID-ezux-6buh-h7h7
11
vulnerability VCID-fj2p-7wkh-1fhq
12
vulnerability VCID-geaa-6dxx-tbcw
13
vulnerability VCID-h1n3-cmte-eugf
14
vulnerability VCID-hqar-fca3-cbht
15
vulnerability VCID-jrxz-b168-7ug4
16
vulnerability VCID-js7k-ptm9-2yh1
17
vulnerability VCID-qbdk-hxhg-wbh4
18
vulnerability VCID-rdwq-93d6-c7b4
19
vulnerability VCID-rg5d-st3d-nbah
20
vulnerability VCID-ujbp-cc1r-wfe9
21
vulnerability VCID-v3h9-1t69-v7a3
22
vulnerability VCID-whyk-3ynn-zyf4
23
vulnerability VCID-x94k-nxyd-27gs
24
vulnerability VCID-xg2f-12w4-yqge
25
vulnerability VCID-xw8r-fn6y-mbhp
26
vulnerability VCID-yeea-n94x-qqch
27
vulnerability VCID-yur3-am6j-w7ay
28
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.9
3
url pkg:pypi/ansible@2.9.6
purl pkg:pypi/ansible@2.9.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3jej-4jyp-cqbt
1
vulnerability VCID-4yvf-k192-9fca
2
vulnerability VCID-682j-e2pu-1uee
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b8zs-br97-57av
6
vulnerability VCID-c1xg-s3kx-gkft
7
vulnerability VCID-d7ez-s7qb-p3ay
8
vulnerability VCID-dzdx-wae5-8ydy
9
vulnerability VCID-e3z2-ydhb-gqfg
10
vulnerability VCID-ezaq-tqd3-4yd1
11
vulnerability VCID-ezux-6buh-h7h7
12
vulnerability VCID-fj2p-7wkh-1fhq
13
vulnerability VCID-geaa-6dxx-tbcw
14
vulnerability VCID-h1n3-cmte-eugf
15
vulnerability VCID-hqar-fca3-cbht
16
vulnerability VCID-jrxz-b168-7ug4
17
vulnerability VCID-js7k-ptm9-2yh1
18
vulnerability VCID-qbdk-hxhg-wbh4
19
vulnerability VCID-rdwq-93d6-c7b4
20
vulnerability VCID-rg5d-st3d-nbah
21
vulnerability VCID-ujbp-cc1r-wfe9
22
vulnerability VCID-v3h9-1t69-v7a3
23
vulnerability VCID-whyk-3ynn-zyf4
24
vulnerability VCID-xg2f-12w4-yqge
25
vulnerability VCID-xw8r-fn6y-mbhp
26
vulnerability VCID-yeea-n94x-qqch
27
vulnerability VCID-yur3-am6j-w7ay
28
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.6
aliases CVE-2020-1737, GHSA-893h-35v4-mxqx, PYSEC-2020-9
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ae1r-yq1g-rkem
1
url VCID-axc3-wcsk-q3eg
vulnerability_id VCID-axc3-wcsk-q3eg
summary A flaw was found in Ansible, where a user's controller is vulnerable to template injection. This issue can occur through facts used in the template if the user is trying to put templates in multi-line YAML strings and the facts being handled do not routinely include special template characters. This flaw allows attackers to perform command injection, which discloses sensitive information. The highest threat from this vulnerability is to confidentiality and integrity.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3583.json
reference_id
reference_type
scores
0
value 6.6
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3583.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-3583
reference_id
reference_type
scores
0
value 0.00276
scoring_system epss
scoring_elements 0.51077
published_at 2026-04-21T12:55:00Z
1
value 0.00319
scoring_system epss
scoring_elements 0.5489
published_at 2026-04-13T12:55:00Z
2
value 0.00319
scoring_system epss
scoring_elements 0.54913
published_at 2026-04-12T12:55:00Z
3
value 0.00319
scoring_system epss
scoring_elements 0.54931
published_at 2026-04-18T12:55:00Z
4
value 0.00319
scoring_system epss
scoring_elements 0.54804
published_at 2026-04-01T12:55:00Z
5
value 0.00319
scoring_system epss
scoring_elements 0.5492
published_at 2026-04-08T12:55:00Z
6
value 0.00319
scoring_system epss
scoring_elements 0.5487
published_at 2026-04-07T12:55:00Z
7
value 0.00319
scoring_system epss
scoring_elements 0.54901
published_at 2026-04-04T12:55:00Z
8
value 0.00319
scoring_system epss
scoring_elements 0.54875
published_at 2026-04-02T12:55:00Z
9
value 0.00319
scoring_system epss
scoring_elements 0.54919
published_at 2026-04-09T12:55:00Z
10
value 0.00319
scoring_system epss
scoring_elements 0.54927
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-3583
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1968412
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=1968412
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3583
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3583
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://github.com/advisories/GHSA-2pfh-q76x-gwvm
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
3
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/advisories/GHSA-2pfh-q76x-gwvm
6
reference_url https://github.com/ansible/ansible
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible
7
reference_url https://github.com/ansible/ansible/commit/03aff644cc1c00e1f7551195c68fbd0d13a39e6e
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/03aff644cc1c00e1f7551195c68fbd0d13a39e6e
8
reference_url https://github.com/ansible/ansible/commit/8aa850e3573e48c9a2f12aef84e8a3a6f5ba4847
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/8aa850e3573e48c9a2f12aef84e8a3a6f5ba4847
9
reference_url https://github.com/ansible/ansible/commit/8b17e5b9229ffaecfe10a4881bc3f87dd2c184e1
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/8b17e5b9229ffaecfe10a4881bc3f87dd2c184e1
10
reference_url https://github.com/ansible/ansible/pull/74960
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/pull/74960
11
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2021-358.yaml
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2021-358.yaml
12
reference_url https://lists.debian.org/debian-lts-announce/2023/12/msg00018.html
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2023/12/msg00018.html
13
reference_url https://security.archlinux.org/AVG-2260
reference_id AVG-2260
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2260
14
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-3583
reference_id CVE-2021-3583
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-3583
15
reference_url https://access.redhat.com/errata/RHSA-2021:2663
reference_id RHSA-2021:2663
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:2663
16
reference_url https://access.redhat.com/errata/RHSA-2021:2664
reference_id RHSA-2021:2664
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:2664
17
reference_url https://usn.ubuntu.com/USN-5315-1/
reference_id USN-USN-5315-1
reference_type
scores
url https://usn.ubuntu.com/USN-5315-1/
fixed_packages
0
url pkg:pypi/ansible@2.9.23rc1
purl pkg:pypi/ansible@2.9.23rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-axc3-wcsk-q3eg
3
vulnerability VCID-c1xg-s3kx-gkft
4
vulnerability VCID-dzdx-wae5-8ydy
5
vulnerability VCID-geaa-6dxx-tbcw
6
vulnerability VCID-qbdk-hxhg-wbh4
7
vulnerability VCID-rg5d-st3d-nbah
8
vulnerability VCID-ujbp-cc1r-wfe9
9
vulnerability VCID-v3h9-1t69-v7a3
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.23rc1
1
url pkg:pypi/ansible@2.9.23
purl pkg:pypi/ansible@2.9.23
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-c1xg-s3kx-gkft
3
vulnerability VCID-dzdx-wae5-8ydy
4
vulnerability VCID-geaa-6dxx-tbcw
5
vulnerability VCID-qbdk-hxhg-wbh4
6
vulnerability VCID-rg5d-st3d-nbah
7
vulnerability VCID-ujbp-cc1r-wfe9
8
vulnerability VCID-v3h9-1t69-v7a3
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.23
2
url pkg:pypi/ansible@2.10.11rc1
purl pkg:pypi/ansible@2.10.11rc1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.10.11rc1
3
url pkg:pypi/ansible@2.11.2rc1
purl pkg:pypi/ansible@2.11.2rc1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.11.2rc1
4
url pkg:pypi/ansible@3.0.0b1
purl pkg:pypi/ansible@3.0.0b1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-qbdk-hxhg-wbh4
2
vulnerability VCID-ujbp-cc1r-wfe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@3.0.0b1
aliases CVE-2021-3583, GHSA-2pfh-q76x-gwvm, PYSEC-2021-358
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-axc3-wcsk-q3eg
2
url VCID-b8zs-br97-57av
vulnerability_id VCID-b8zs-br97-57av
summary A flaw was found in Ansible 2.7.16 and prior, 2.8.8 and prior, and 2.9.5 and prior when a password is set with the argument "password" of svn module, it is used on svn command line, disclosing to other users within the same node. An attacker could take advantage by reading the cmdline file from that particular PID on the procfs.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1739.json
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1739.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-1739
reference_id
reference_type
scores
0
value 0.00034
scoring_system epss
scoring_elements 0.10127
published_at 2026-04-21T12:55:00Z
1
value 0.00037
scoring_system epss
scoring_elements 0.11019
published_at 2026-04-18T12:55:00Z
2
value 0.00037
scoring_system epss
scoring_elements 0.11009
published_at 2026-04-16T12:55:00Z
3
value 0.00045
scoring_system epss
scoring_elements 0.13865
published_at 2026-04-09T12:55:00Z
4
value 0.00045
scoring_system epss
scoring_elements 0.13748
published_at 2026-04-13T12:55:00Z
5
value 0.00045
scoring_system epss
scoring_elements 0.13797
published_at 2026-04-12T12:55:00Z
6
value 0.00045
scoring_system epss
scoring_elements 0.13834
published_at 2026-04-11T12:55:00Z
7
value 0.00045
scoring_system epss
scoring_elements 0.13815
published_at 2026-04-08T12:55:00Z
8
value 0.00045
scoring_system epss
scoring_elements 0.13732
published_at 2026-04-07T12:55:00Z
9
value 0.00045
scoring_system epss
scoring_elements 0.1393
published_at 2026-04-04T12:55:00Z
10
value 0.00045
scoring_system epss
scoring_elements 0.13874
published_at 2026-04-02T12:55:00Z
11
value 0.00045
scoring_system epss
scoring_elements 0.1378
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-1739
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1739
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
1
value 2.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value LOW
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1739
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10156
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10156
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10206
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10206
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14846
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14846
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14864
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14864
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14904
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14904
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10684
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10684
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10685
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10685
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10729
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10729
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14330
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14330
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14332
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14332
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14365
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14365
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1733
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1733
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1735
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1735
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1739
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1739
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1740
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1740
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1746
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1746
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1753
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1753
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20228
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20228
21
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
22
reference_url https://github.com/advisories/GHSA-923p-fr2c-g5m2
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
1
value LOW
scoring_system cvssv3.1_qr
scoring_elements
2
value 2.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
3
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/advisories/GHSA-923p-fr2c-g5m2
23
reference_url https://github.com/ansible/ansible
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
1
value 2.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible
24
reference_url https://github.com/ansible/ansible/commit/1a89d4f059c21a818306a39ada7f5284ae125237
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
1
value 2.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/1a89d4f059c21a818306a39ada7f5284ae125237
25
reference_url https://github.com/ansible/ansible/commit/6c74a298702c8bb5532b9600073312e08f39680f
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
1
value 2.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/6c74a298702c8bb5532b9600073312e08f39680f
26
reference_url https://github.com/ansible/ansible/commit/c6c4fbf4a1fdea1e10ba94462a60c413990a16a4
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
1
value 2.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/c6c4fbf4a1fdea1e10ba94462a60c413990a16a4
27
reference_url https://github.com/ansible/ansible/issues/67797
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
1
value 2.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/issues/67797
28
reference_url https://github.com/ansible/ansible/pull/68911
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
1
value 2.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/pull/68911
29
reference_url https://github.com/ansible/ansible/pull/68912
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
1
value 2.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/pull/68912
30
reference_url https://github.com/ansible/ansible/pull/68913
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
1
value 2.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/pull/68913
31
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2020-11.yaml
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
1
value 2.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2020-11.yaml
32
reference_url https://lists.debian.org/debian-lts-announce/2020/05/msg00005.html
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
1
value 2.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value LOW
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2020/05/msg00005.html
33
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FWDK3QUVBULS3Q3PQTGEKUQYPSNOU5M3/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FWDK3QUVBULS3Q3PQTGEKUQYPSNOU5M3/
34
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QT27K5ZRGDPCH7GT3DRI3LO4IVDVQUB7/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QT27K5ZRGDPCH7GT3DRI3LO4IVDVQUB7/
35
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U3IMV3XEIUXL6S4KPLYYM4TVJQ2VNEP2/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U3IMV3XEIUXL6S4KPLYYM4TVJQ2VNEP2/
36
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FWDK3QUVBULS3Q3PQTGEKUQYPSNOU5M3
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
1
value 2.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value LOW
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FWDK3QUVBULS3Q3PQTGEKUQYPSNOU5M3
37
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FWDK3QUVBULS3Q3PQTGEKUQYPSNOU5M3/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FWDK3QUVBULS3Q3PQTGEKUQYPSNOU5M3/
38
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QT27K5ZRGDPCH7GT3DRI3LO4IVDVQUB7
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
1
value 2.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value LOW
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QT27K5ZRGDPCH7GT3DRI3LO4IVDVQUB7
39
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QT27K5ZRGDPCH7GT3DRI3LO4IVDVQUB7/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QT27K5ZRGDPCH7GT3DRI3LO4IVDVQUB7/
40
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U3IMV3XEIUXL6S4KPLYYM4TVJQ2VNEP2
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
1
value 2.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value LOW
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U3IMV3XEIUXL6S4KPLYYM4TVJQ2VNEP2
41
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U3IMV3XEIUXL6S4KPLYYM4TVJQ2VNEP2/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U3IMV3XEIUXL6S4KPLYYM4TVJQ2VNEP2/
42
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-1739
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv2
scoring_elements AV:L/AC:M/Au:N/C:P/I:P/A:N
1
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
2
value 2.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
3
value LOW
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2020-1739
43
reference_url https://www.debian.org/security/2021/dsa-4950
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
1
value 2.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
2
value LOW
scoring_system generic_textual
scoring_elements
url https://www.debian.org/security/2021/dsa-4950
44
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1802178
reference_id 1802178
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1802178
45
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:ansible:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible:*:*:*:*:*:*:*:*
46
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_tower:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:ansible_tower:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_tower:*:*:*:*:*:*:*:*
47
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:cloudforms_management_engine:5.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:cloudforms_management_engine:5.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:cloudforms_management_engine:5.0:*:*:*:*:*:*:*
48
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*
49
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
50
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
51
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
reference_id cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
52
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
reference_id cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
53
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
reference_id cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
54
reference_url https://access.redhat.com/errata/RHSA-2020:1541
reference_id RHSA-2020:1541
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1541
55
reference_url https://access.redhat.com/errata/RHSA-2020:1542
reference_id RHSA-2020:1542
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1542
56
reference_url https://access.redhat.com/errata/RHSA-2020:1543
reference_id RHSA-2020:1543
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1543
57
reference_url https://access.redhat.com/errata/RHSA-2020:1544
reference_id RHSA-2020:1544
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1544
58
reference_url https://usn.ubuntu.com/7330-1/
reference_id USN-7330-1
reference_type
scores
url https://usn.ubuntu.com/7330-1/
fixed_packages
0
url pkg:pypi/ansible@2.7.17
purl pkg:pypi/ansible@2.7.17
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-atun-stks-4kcb
3
vulnerability VCID-axc3-wcsk-q3eg
4
vulnerability VCID-c1xg-s3kx-gkft
5
vulnerability VCID-dzdx-wae5-8ydy
6
vulnerability VCID-e3z2-ydhb-gqfg
7
vulnerability VCID-ezaq-tqd3-4yd1
8
vulnerability VCID-fj2p-7wkh-1fhq
9
vulnerability VCID-geaa-6dxx-tbcw
10
vulnerability VCID-jnmu-c8dt-5yb6
11
vulnerability VCID-js7k-ptm9-2yh1
12
vulnerability VCID-qbdk-hxhg-wbh4
13
vulnerability VCID-r6bb-p28b-8fcn
14
vulnerability VCID-rdwq-93d6-c7b4
15
vulnerability VCID-rg5d-st3d-nbah
16
vulnerability VCID-ujbp-cc1r-wfe9
17
vulnerability VCID-v3h9-1t69-v7a3
18
vulnerability VCID-whyk-3ynn-zyf4
19
vulnerability VCID-x94k-nxyd-27gs
20
vulnerability VCID-xw8r-fn6y-mbhp
21
vulnerability VCID-yeea-n94x-qqch
22
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.17
1
url pkg:pypi/ansible@2.8.0a1
purl pkg:pypi/ansible@2.8.0a1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-a49n-tvnt-p3df
3
vulnerability VCID-ae1r-yq1g-rkem
4
vulnerability VCID-atun-stks-4kcb
5
vulnerability VCID-axc3-wcsk-q3eg
6
vulnerability VCID-b8zs-br97-57av
7
vulnerability VCID-c1xg-s3kx-gkft
8
vulnerability VCID-d4ka-dk4p-kfhb
9
vulnerability VCID-d7ez-s7qb-p3ay
10
vulnerability VCID-dzdx-wae5-8ydy
11
vulnerability VCID-e3z2-ydhb-gqfg
12
vulnerability VCID-ezaq-tqd3-4yd1
13
vulnerability VCID-ezux-6buh-h7h7
14
vulnerability VCID-fj2p-7wkh-1fhq
15
vulnerability VCID-geaa-6dxx-tbcw
16
vulnerability VCID-h1n3-cmte-eugf
17
vulnerability VCID-hqar-fca3-cbht
18
vulnerability VCID-jnmu-c8dt-5yb6
19
vulnerability VCID-jrxz-b168-7ug4
20
vulnerability VCID-js7k-ptm9-2yh1
21
vulnerability VCID-kb5h-116p-33b4
22
vulnerability VCID-nukv-kkws-xkb1
23
vulnerability VCID-qbdk-hxhg-wbh4
24
vulnerability VCID-r6bb-p28b-8fcn
25
vulnerability VCID-rdwq-93d6-c7b4
26
vulnerability VCID-rg5d-st3d-nbah
27
vulnerability VCID-uhg5-zpzt-e3gz
28
vulnerability VCID-ujbp-cc1r-wfe9
29
vulnerability VCID-v3h9-1t69-v7a3
30
vulnerability VCID-whyk-3ynn-zyf4
31
vulnerability VCID-x5e2-7whc-v3fc
32
vulnerability VCID-x94k-nxyd-27gs
33
vulnerability VCID-xg2f-12w4-yqge
34
vulnerability VCID-xw8r-fn6y-mbhp
35
vulnerability VCID-yeea-n94x-qqch
36
vulnerability VCID-yur3-am6j-w7ay
37
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.0a1
2
url pkg:pypi/ansible@2.8.9
purl pkg:pypi/ansible@2.8.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-atun-stks-4kcb
3
vulnerability VCID-axc3-wcsk-q3eg
4
vulnerability VCID-b8zs-br97-57av
5
vulnerability VCID-c1xg-s3kx-gkft
6
vulnerability VCID-d7ez-s7qb-p3ay
7
vulnerability VCID-dzdx-wae5-8ydy
8
vulnerability VCID-e3z2-ydhb-gqfg
9
vulnerability VCID-ezaq-tqd3-4yd1
10
vulnerability VCID-ezux-6buh-h7h7
11
vulnerability VCID-fj2p-7wkh-1fhq
12
vulnerability VCID-geaa-6dxx-tbcw
13
vulnerability VCID-h1n3-cmte-eugf
14
vulnerability VCID-hqar-fca3-cbht
15
vulnerability VCID-jrxz-b168-7ug4
16
vulnerability VCID-js7k-ptm9-2yh1
17
vulnerability VCID-qbdk-hxhg-wbh4
18
vulnerability VCID-rdwq-93d6-c7b4
19
vulnerability VCID-rg5d-st3d-nbah
20
vulnerability VCID-ujbp-cc1r-wfe9
21
vulnerability VCID-v3h9-1t69-v7a3
22
vulnerability VCID-whyk-3ynn-zyf4
23
vulnerability VCID-x94k-nxyd-27gs
24
vulnerability VCID-xg2f-12w4-yqge
25
vulnerability VCID-xw8r-fn6y-mbhp
26
vulnerability VCID-yeea-n94x-qqch
27
vulnerability VCID-yur3-am6j-w7ay
28
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.9
3
url pkg:pypi/ansible@2.8.11
purl pkg:pypi/ansible@2.8.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-atun-stks-4kcb
3
vulnerability VCID-axc3-wcsk-q3eg
4
vulnerability VCID-c1xg-s3kx-gkft
5
vulnerability VCID-dzdx-wae5-8ydy
6
vulnerability VCID-e3z2-ydhb-gqfg
7
vulnerability VCID-ezaq-tqd3-4yd1
8
vulnerability VCID-fj2p-7wkh-1fhq
9
vulnerability VCID-geaa-6dxx-tbcw
10
vulnerability VCID-jrxz-b168-7ug4
11
vulnerability VCID-js7k-ptm9-2yh1
12
vulnerability VCID-qbdk-hxhg-wbh4
13
vulnerability VCID-rdwq-93d6-c7b4
14
vulnerability VCID-rg5d-st3d-nbah
15
vulnerability VCID-ujbp-cc1r-wfe9
16
vulnerability VCID-v3h9-1t69-v7a3
17
vulnerability VCID-whyk-3ynn-zyf4
18
vulnerability VCID-x94k-nxyd-27gs
19
vulnerability VCID-xw8r-fn6y-mbhp
20
vulnerability VCID-yeea-n94x-qqch
21
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.11
4
url pkg:pypi/ansible@2.9.6
purl pkg:pypi/ansible@2.9.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3jej-4jyp-cqbt
1
vulnerability VCID-4yvf-k192-9fca
2
vulnerability VCID-682j-e2pu-1uee
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b8zs-br97-57av
6
vulnerability VCID-c1xg-s3kx-gkft
7
vulnerability VCID-d7ez-s7qb-p3ay
8
vulnerability VCID-dzdx-wae5-8ydy
9
vulnerability VCID-e3z2-ydhb-gqfg
10
vulnerability VCID-ezaq-tqd3-4yd1
11
vulnerability VCID-ezux-6buh-h7h7
12
vulnerability VCID-fj2p-7wkh-1fhq
13
vulnerability VCID-geaa-6dxx-tbcw
14
vulnerability VCID-h1n3-cmte-eugf
15
vulnerability VCID-hqar-fca3-cbht
16
vulnerability VCID-jrxz-b168-7ug4
17
vulnerability VCID-js7k-ptm9-2yh1
18
vulnerability VCID-qbdk-hxhg-wbh4
19
vulnerability VCID-rdwq-93d6-c7b4
20
vulnerability VCID-rg5d-st3d-nbah
21
vulnerability VCID-ujbp-cc1r-wfe9
22
vulnerability VCID-v3h9-1t69-v7a3
23
vulnerability VCID-whyk-3ynn-zyf4
24
vulnerability VCID-xg2f-12w4-yqge
25
vulnerability VCID-xw8r-fn6y-mbhp
26
vulnerability VCID-yeea-n94x-qqch
27
vulnerability VCID-yur3-am6j-w7ay
28
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.6
5
url pkg:pypi/ansible@2.9.7
purl pkg:pypi/ansible@2.9.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-atun-stks-4kcb
3
vulnerability VCID-axc3-wcsk-q3eg
4
vulnerability VCID-c1xg-s3kx-gkft
5
vulnerability VCID-dzdx-wae5-8ydy
6
vulnerability VCID-e3z2-ydhb-gqfg
7
vulnerability VCID-fj2p-7wkh-1fhq
8
vulnerability VCID-geaa-6dxx-tbcw
9
vulnerability VCID-jrxz-b168-7ug4
10
vulnerability VCID-js7k-ptm9-2yh1
11
vulnerability VCID-qbdk-hxhg-wbh4
12
vulnerability VCID-rdwq-93d6-c7b4
13
vulnerability VCID-rg5d-st3d-nbah
14
vulnerability VCID-ujbp-cc1r-wfe9
15
vulnerability VCID-v3h9-1t69-v7a3
16
vulnerability VCID-whyk-3ynn-zyf4
17
vulnerability VCID-xw8r-fn6y-mbhp
18
vulnerability VCID-yeea-n94x-qqch
19
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.7
aliases CVE-2020-1739, GHSA-923p-fr2c-g5m2, PYSEC-2020-11
risk_score 1.8
exploitability 0.5
weighted_severity 3.5
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-b8zs-br97-57av
3
url VCID-d4ka-dk4p-kfhb
vulnerability_id VCID-d4ka-dk4p-kfhb
summary A flaw was found in the solaris_zone module from the Ansible Community modules. When setting the name for the zone on the Solaris host, the zone name is checked by listing the process with the 'ps' bare command on the remote machine. An attacker could take advantage of this flaw by crafting the name of the zone and executing arbitrary commands in the remote host. Ansible Engine 2.7.15, 2.8.7, and 2.9.2 as well as previous versions are affected.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14904.json
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14904.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-14904
reference_id
reference_type
scores
0
value 0.00033
scoring_system epss
scoring_elements 0.09631
published_at 2026-04-21T12:55:00Z
1
value 0.00036
scoring_system epss
scoring_elements 0.10527
published_at 2026-04-18T12:55:00Z
2
value 0.00036
scoring_system epss
scoring_elements 0.10509
published_at 2026-04-16T12:55:00Z
3
value 0.00041
scoring_system epss
scoring_elements 0.12463
published_at 2026-04-01T12:55:00Z
4
value 0.00041
scoring_system epss
scoring_elements 0.1244
published_at 2026-04-13T12:55:00Z
5
value 0.00041
scoring_system epss
scoring_elements 0.12481
published_at 2026-04-12T12:55:00Z
6
value 0.00041
scoring_system epss
scoring_elements 0.1252
published_at 2026-04-11T12:55:00Z
7
value 0.00041
scoring_system epss
scoring_elements 0.12549
published_at 2026-04-09T12:55:00Z
8
value 0.00041
scoring_system epss
scoring_elements 0.12498
published_at 2026-04-08T12:55:00Z
9
value 0.00041
scoring_system epss
scoring_elements 0.12417
published_at 2026-04-07T12:55:00Z
10
value 0.00041
scoring_system epss
scoring_elements 0.12609
published_at 2026-04-04T12:55:00Z
11
value 0.00041
scoring_system epss
scoring_elements 0.12567
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-14904
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1776944
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:L
1
value 8.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:L/SC:H/SI:L/SA:L
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=1776944
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10156
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10156
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10206
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10206
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14846
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14846
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14864
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14864
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14904
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14904
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10684
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10684
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10685
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10685
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10729
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10729
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14330
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14330
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14332
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14332
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14365
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14365
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1733
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1733
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1735
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1735
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1739
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1739
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1740
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1740
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1746
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1746
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1753
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1753
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20228
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20228
21
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
22
reference_url https://github.com/advisories/GHSA-gwr8-5j83-483c
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:L
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value 8.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:L/SC:H/SI:L/SA:L
3
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/advisories/GHSA-gwr8-5j83-483c
23
reference_url https://github.com/ansible/ansible
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:L
1
value 8.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:L/SC:H/SI:L/SA:L
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible
24
reference_url https://github.com/ansible/ansible/commit/589a415f887b6f2bb65cd07fe6b2e9d0a8156b69
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:L
1
value 8.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:L/SC:H/SI:L/SA:L
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/589a415f887b6f2bb65cd07fe6b2e9d0a8156b69
25
reference_url https://github.com/ansible/ansible/commit/6a86650109b8654f5898369e45d3857624edf907
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:L
1
value 8.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:L/SC:H/SI:L/SA:L
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/6a86650109b8654f5898369e45d3857624edf907
26
reference_url https://github.com/ansible/ansible/commit/a1b0f72c98b4b2afaab8aafa255e82c2075049c8
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:L
1
value 8.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:L/SC:H/SI:L/SA:L
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/a1b0f72c98b4b2afaab8aafa255e82c2075049c8
27
reference_url https://github.com/ansible/ansible/pull/65686
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:L
1
value 8.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:L/SC:H/SI:L/SA:L
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/pull/65686
28
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2020-161.yaml
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:L
1
value 8.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:L/SC:H/SI:L/SA:L
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2020-161.yaml
29
reference_url https://lists.debian.org/debian-lts-announce/2021/01/msg00023.html
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:L
1
value 8.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:L/SC:H/SI:L/SA:L
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2021/01/msg00023.html
30
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-14904
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:L
1
value 8.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:L/SC:H/SI:L/SA:L
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2019-14904
31
reference_url https://www.debian.org/security/2021/dsa-4950
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:L
1
value 8.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:L/SC:H/SI:L/SA:L
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.debian.org/security/2021/dsa-4950
32
reference_url https://access.redhat.com/errata/RHSA-2020:0215
reference_id RHSA-2020:0215
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0215
33
reference_url https://access.redhat.com/errata/RHSA-2020:0217
reference_id RHSA-2020:0217
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0217
34
reference_url https://usn.ubuntu.com/7330-1/
reference_id USN-7330-1
reference_type
scores
url https://usn.ubuntu.com/7330-1/
fixed_packages
0
url pkg:pypi/ansible@2.7.15
purl pkg:pypi/ansible@2.7.15
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-a49n-tvnt-p3df
3
vulnerability VCID-ae1r-yq1g-rkem
4
vulnerability VCID-atun-stks-4kcb
5
vulnerability VCID-axc3-wcsk-q3eg
6
vulnerability VCID-b8zs-br97-57av
7
vulnerability VCID-c1xg-s3kx-gkft
8
vulnerability VCID-d4ka-dk4p-kfhb
9
vulnerability VCID-d7ez-s7qb-p3ay
10
vulnerability VCID-dzdx-wae5-8ydy
11
vulnerability VCID-e3z2-ydhb-gqfg
12
vulnerability VCID-ezaq-tqd3-4yd1
13
vulnerability VCID-ezux-6buh-h7h7
14
vulnerability VCID-fj2p-7wkh-1fhq
15
vulnerability VCID-geaa-6dxx-tbcw
16
vulnerability VCID-h1n3-cmte-eugf
17
vulnerability VCID-hqar-fca3-cbht
18
vulnerability VCID-jnmu-c8dt-5yb6
19
vulnerability VCID-js7k-ptm9-2yh1
20
vulnerability VCID-qbdk-hxhg-wbh4
21
vulnerability VCID-r6bb-p28b-8fcn
22
vulnerability VCID-rdwq-93d6-c7b4
23
vulnerability VCID-rg5d-st3d-nbah
24
vulnerability VCID-uhg5-zpzt-e3gz
25
vulnerability VCID-ujbp-cc1r-wfe9
26
vulnerability VCID-v3h9-1t69-v7a3
27
vulnerability VCID-whyk-3ynn-zyf4
28
vulnerability VCID-x94k-nxyd-27gs
29
vulnerability VCID-xg2f-12w4-yqge
30
vulnerability VCID-xw8r-fn6y-mbhp
31
vulnerability VCID-yeea-n94x-qqch
32
vulnerability VCID-yur3-am6j-w7ay
33
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.15
1
url pkg:pypi/ansible@2.7.16
purl pkg:pypi/ansible@2.7.16
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-ae1r-yq1g-rkem
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b8zs-br97-57av
6
vulnerability VCID-c1xg-s3kx-gkft
7
vulnerability VCID-d7ez-s7qb-p3ay
8
vulnerability VCID-dzdx-wae5-8ydy
9
vulnerability VCID-e3z2-ydhb-gqfg
10
vulnerability VCID-ezaq-tqd3-4yd1
11
vulnerability VCID-ezux-6buh-h7h7
12
vulnerability VCID-fj2p-7wkh-1fhq
13
vulnerability VCID-geaa-6dxx-tbcw
14
vulnerability VCID-h1n3-cmte-eugf
15
vulnerability VCID-hqar-fca3-cbht
16
vulnerability VCID-jnmu-c8dt-5yb6
17
vulnerability VCID-js7k-ptm9-2yh1
18
vulnerability VCID-qbdk-hxhg-wbh4
19
vulnerability VCID-r6bb-p28b-8fcn
20
vulnerability VCID-rdwq-93d6-c7b4
21
vulnerability VCID-rg5d-st3d-nbah
22
vulnerability VCID-ujbp-cc1r-wfe9
23
vulnerability VCID-v3h9-1t69-v7a3
24
vulnerability VCID-whyk-3ynn-zyf4
25
vulnerability VCID-x94k-nxyd-27gs
26
vulnerability VCID-xg2f-12w4-yqge
27
vulnerability VCID-xw8r-fn6y-mbhp
28
vulnerability VCID-yeea-n94x-qqch
29
vulnerability VCID-yur3-am6j-w7ay
30
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.16
2
url pkg:pypi/ansible@2.8.7
purl pkg:pypi/ansible@2.8.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-a49n-tvnt-p3df
3
vulnerability VCID-ae1r-yq1g-rkem
4
vulnerability VCID-atun-stks-4kcb
5
vulnerability VCID-axc3-wcsk-q3eg
6
vulnerability VCID-b8zs-br97-57av
7
vulnerability VCID-c1xg-s3kx-gkft
8
vulnerability VCID-d4ka-dk4p-kfhb
9
vulnerability VCID-d7ez-s7qb-p3ay
10
vulnerability VCID-dzdx-wae5-8ydy
11
vulnerability VCID-e3z2-ydhb-gqfg
12
vulnerability VCID-ezaq-tqd3-4yd1
13
vulnerability VCID-ezux-6buh-h7h7
14
vulnerability VCID-fj2p-7wkh-1fhq
15
vulnerability VCID-geaa-6dxx-tbcw
16
vulnerability VCID-h1n3-cmte-eugf
17
vulnerability VCID-hqar-fca3-cbht
18
vulnerability VCID-jrxz-b168-7ug4
19
vulnerability VCID-js7k-ptm9-2yh1
20
vulnerability VCID-qbdk-hxhg-wbh4
21
vulnerability VCID-rdwq-93d6-c7b4
22
vulnerability VCID-rg5d-st3d-nbah
23
vulnerability VCID-uhg5-zpzt-e3gz
24
vulnerability VCID-ujbp-cc1r-wfe9
25
vulnerability VCID-v3h9-1t69-v7a3
26
vulnerability VCID-whyk-3ynn-zyf4
27
vulnerability VCID-x94k-nxyd-27gs
28
vulnerability VCID-xg2f-12w4-yqge
29
vulnerability VCID-xw8r-fn6y-mbhp
30
vulnerability VCID-yeea-n94x-qqch
31
vulnerability VCID-yur3-am6j-w7ay
32
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.7
3
url pkg:pypi/ansible@2.8.8
purl pkg:pypi/ansible@2.8.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-ae1r-yq1g-rkem
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b8zs-br97-57av
6
vulnerability VCID-c1xg-s3kx-gkft
7
vulnerability VCID-d7ez-s7qb-p3ay
8
vulnerability VCID-dzdx-wae5-8ydy
9
vulnerability VCID-e3z2-ydhb-gqfg
10
vulnerability VCID-ezaq-tqd3-4yd1
11
vulnerability VCID-ezux-6buh-h7h7
12
vulnerability VCID-fj2p-7wkh-1fhq
13
vulnerability VCID-geaa-6dxx-tbcw
14
vulnerability VCID-h1n3-cmte-eugf
15
vulnerability VCID-hqar-fca3-cbht
16
vulnerability VCID-jrxz-b168-7ug4
17
vulnerability VCID-js7k-ptm9-2yh1
18
vulnerability VCID-qbdk-hxhg-wbh4
19
vulnerability VCID-rdwq-93d6-c7b4
20
vulnerability VCID-rg5d-st3d-nbah
21
vulnerability VCID-ujbp-cc1r-wfe9
22
vulnerability VCID-v3h9-1t69-v7a3
23
vulnerability VCID-whyk-3ynn-zyf4
24
vulnerability VCID-x94k-nxyd-27gs
25
vulnerability VCID-xg2f-12w4-yqge
26
vulnerability VCID-xw8r-fn6y-mbhp
27
vulnerability VCID-yeea-n94x-qqch
28
vulnerability VCID-yur3-am6j-w7ay
29
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.8
4
url pkg:pypi/ansible@2.9.2
purl pkg:pypi/ansible@2.9.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3jej-4jyp-cqbt
1
vulnerability VCID-4yvf-k192-9fca
2
vulnerability VCID-682j-e2pu-1uee
3
vulnerability VCID-a49n-tvnt-p3df
4
vulnerability VCID-ae1r-yq1g-rkem
5
vulnerability VCID-atun-stks-4kcb
6
vulnerability VCID-axc3-wcsk-q3eg
7
vulnerability VCID-b8zs-br97-57av
8
vulnerability VCID-c1xg-s3kx-gkft
9
vulnerability VCID-d4ka-dk4p-kfhb
10
vulnerability VCID-d7ez-s7qb-p3ay
11
vulnerability VCID-dzdx-wae5-8ydy
12
vulnerability VCID-e3z2-ydhb-gqfg
13
vulnerability VCID-ezaq-tqd3-4yd1
14
vulnerability VCID-ezux-6buh-h7h7
15
vulnerability VCID-fj2p-7wkh-1fhq
16
vulnerability VCID-geaa-6dxx-tbcw
17
vulnerability VCID-h1n3-cmte-eugf
18
vulnerability VCID-hqar-fca3-cbht
19
vulnerability VCID-jrxz-b168-7ug4
20
vulnerability VCID-js7k-ptm9-2yh1
21
vulnerability VCID-qbdk-hxhg-wbh4
22
vulnerability VCID-rdwq-93d6-c7b4
23
vulnerability VCID-rg5d-st3d-nbah
24
vulnerability VCID-ujbp-cc1r-wfe9
25
vulnerability VCID-v3h9-1t69-v7a3
26
vulnerability VCID-whyk-3ynn-zyf4
27
vulnerability VCID-x94k-nxyd-27gs
28
vulnerability VCID-xg2f-12w4-yqge
29
vulnerability VCID-xw8r-fn6y-mbhp
30
vulnerability VCID-yeea-n94x-qqch
31
vulnerability VCID-yur3-am6j-w7ay
32
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.2
5
url pkg:pypi/ansible@2.9.3
purl pkg:pypi/ansible@2.9.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3jej-4jyp-cqbt
1
vulnerability VCID-4yvf-k192-9fca
2
vulnerability VCID-682j-e2pu-1uee
3
vulnerability VCID-ae1r-yq1g-rkem
4
vulnerability VCID-atun-stks-4kcb
5
vulnerability VCID-axc3-wcsk-q3eg
6
vulnerability VCID-b8zs-br97-57av
7
vulnerability VCID-c1xg-s3kx-gkft
8
vulnerability VCID-d7ez-s7qb-p3ay
9
vulnerability VCID-dzdx-wae5-8ydy
10
vulnerability VCID-e3z2-ydhb-gqfg
11
vulnerability VCID-ezaq-tqd3-4yd1
12
vulnerability VCID-ezux-6buh-h7h7
13
vulnerability VCID-fj2p-7wkh-1fhq
14
vulnerability VCID-geaa-6dxx-tbcw
15
vulnerability VCID-h1n3-cmte-eugf
16
vulnerability VCID-hqar-fca3-cbht
17
vulnerability VCID-jrxz-b168-7ug4
18
vulnerability VCID-js7k-ptm9-2yh1
19
vulnerability VCID-qbdk-hxhg-wbh4
20
vulnerability VCID-rdwq-93d6-c7b4
21
vulnerability VCID-rg5d-st3d-nbah
22
vulnerability VCID-ujbp-cc1r-wfe9
23
vulnerability VCID-v3h9-1t69-v7a3
24
vulnerability VCID-whyk-3ynn-zyf4
25
vulnerability VCID-x94k-nxyd-27gs
26
vulnerability VCID-xg2f-12w4-yqge
27
vulnerability VCID-xw8r-fn6y-mbhp
28
vulnerability VCID-yeea-n94x-qqch
29
vulnerability VCID-yur3-am6j-w7ay
30
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.3
aliases CVE-2019-14904, GHSA-gwr8-5j83-483c, PYSEC-2020-161
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-d4ka-dk4p-kfhb
4
url VCID-d7ez-s7qb-p3ay
vulnerability_id VCID-d7ez-s7qb-p3ay
summary A flaw was found in Ansible Engine when the module package or service is used and the parameter 'use' is not specified. If a previous task is executed with a malicious user, the module sent can be selected by the attacker using the ansible facts file. All versions in 2.7.x, 2.8.x and 2.9.x branches are believed to be vulnerable.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1738.json
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1738.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-1738
reference_id
reference_type
scores
0
value 0.00139
scoring_system epss
scoring_elements 0.3401
published_at 2026-04-18T12:55:00Z
1
value 0.00139
scoring_system epss
scoring_elements 0.34022
published_at 2026-04-16T12:55:00Z
2
value 0.00139
scoring_system epss
scoring_elements 0.33988
published_at 2026-04-13T12:55:00Z
3
value 0.00139
scoring_system epss
scoring_elements 0.34012
published_at 2026-04-12T12:55:00Z
4
value 0.00139
scoring_system epss
scoring_elements 0.34055
published_at 2026-04-11T12:55:00Z
5
value 0.00139
scoring_system epss
scoring_elements 0.34056
published_at 2026-04-09T12:55:00Z
6
value 0.00139
scoring_system epss
scoring_elements 0.34025
published_at 2026-04-08T12:55:00Z
7
value 0.00139
scoring_system epss
scoring_elements 0.33983
published_at 2026-04-07T12:55:00Z
8
value 0.00139
scoring_system epss
scoring_elements 0.34123
published_at 2026-04-04T12:55:00Z
9
value 0.00139
scoring_system epss
scoring_elements 0.33754
published_at 2026-04-01T12:55:00Z
10
value 0.00139
scoring_system epss
scoring_elements 0.34092
published_at 2026-04-02T12:55:00Z
11
value 0.00215
scoring_system epss
scoring_elements 0.44045
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-1738
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1738
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L
1
value 1.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:N/VI:N/VA:N/SC:N/SI:L/SA:L
2
value LOW
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1738
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1738
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1738
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://github.com/advisories/GHSA-f85h-23mf-2fwh
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L
1
value LOW
scoring_system cvssv3.1_qr
scoring_elements
2
value 1.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:N/VI:N/VA:N/SC:N/SI:L/SA:L
3
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/advisories/GHSA-f85h-23mf-2fwh
6
reference_url https://github.com/ansible/ansible
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L
1
value 1.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:N/VI:N/VA:N/SC:N/SI:L/SA:L
2
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible
7
reference_url https://github.com/ansible/ansible/issues/67796
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L
1
value 1.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:N/VI:N/VA:N/SC:N/SI:L/SA:L
2
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/issues/67796
8
reference_url https://github.com/ansible/ansible/pull/67808
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L
1
value 1.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:N/VI:N/VA:N/SC:N/SI:L/SA:L
2
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/pull/67808
9
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2020-10.yaml
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L
1
value 1.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:N/VI:N/VA:N/SC:N/SI:L/SA:L
2
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2020-10.yaml
10
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-1738
reference_id
reference_type
scores
0
value 2.6
scoring_system cvssv2
scoring_elements AV:L/AC:H/Au:N/C:N/I:P/A:P
1
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L
2
value 1.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:N/VI:N/VA:N/SC:N/SI:L/SA:L
3
value LOW
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2020-1738
11
reference_url https://security.gentoo.org/glsa/202006-11
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L
1
value 1.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:N/VI:N/VA:N/SC:N/SI:L/SA:L
2
value LOW
scoring_system generic_textual
scoring_elements
url https://security.gentoo.org/glsa/202006-11
12
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1802164
reference_id 1802164
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1802164
13
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:ansible:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible:*:*:*:*:*:*:*:*
14
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_tower:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:ansible_tower:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_tower:*:*:*:*:*:*:*:*
15
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:cloudforms_management_engine:5.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:cloudforms_management_engine:5.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:cloudforms_management_engine:5.0:*:*:*:*:*:*:*
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*
fixed_packages
0
url pkg:pypi/ansible@2.7.17
purl pkg:pypi/ansible@2.7.17
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-atun-stks-4kcb
3
vulnerability VCID-axc3-wcsk-q3eg
4
vulnerability VCID-c1xg-s3kx-gkft
5
vulnerability VCID-dzdx-wae5-8ydy
6
vulnerability VCID-e3z2-ydhb-gqfg
7
vulnerability VCID-ezaq-tqd3-4yd1
8
vulnerability VCID-fj2p-7wkh-1fhq
9
vulnerability VCID-geaa-6dxx-tbcw
10
vulnerability VCID-jnmu-c8dt-5yb6
11
vulnerability VCID-js7k-ptm9-2yh1
12
vulnerability VCID-qbdk-hxhg-wbh4
13
vulnerability VCID-r6bb-p28b-8fcn
14
vulnerability VCID-rdwq-93d6-c7b4
15
vulnerability VCID-rg5d-st3d-nbah
16
vulnerability VCID-ujbp-cc1r-wfe9
17
vulnerability VCID-v3h9-1t69-v7a3
18
vulnerability VCID-whyk-3ynn-zyf4
19
vulnerability VCID-x94k-nxyd-27gs
20
vulnerability VCID-xw8r-fn6y-mbhp
21
vulnerability VCID-yeea-n94x-qqch
22
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.17
1
url pkg:pypi/ansible@2.8.0a1
purl pkg:pypi/ansible@2.8.0a1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-a49n-tvnt-p3df
3
vulnerability VCID-ae1r-yq1g-rkem
4
vulnerability VCID-atun-stks-4kcb
5
vulnerability VCID-axc3-wcsk-q3eg
6
vulnerability VCID-b8zs-br97-57av
7
vulnerability VCID-c1xg-s3kx-gkft
8
vulnerability VCID-d4ka-dk4p-kfhb
9
vulnerability VCID-d7ez-s7qb-p3ay
10
vulnerability VCID-dzdx-wae5-8ydy
11
vulnerability VCID-e3z2-ydhb-gqfg
12
vulnerability VCID-ezaq-tqd3-4yd1
13
vulnerability VCID-ezux-6buh-h7h7
14
vulnerability VCID-fj2p-7wkh-1fhq
15
vulnerability VCID-geaa-6dxx-tbcw
16
vulnerability VCID-h1n3-cmte-eugf
17
vulnerability VCID-hqar-fca3-cbht
18
vulnerability VCID-jnmu-c8dt-5yb6
19
vulnerability VCID-jrxz-b168-7ug4
20
vulnerability VCID-js7k-ptm9-2yh1
21
vulnerability VCID-kb5h-116p-33b4
22
vulnerability VCID-nukv-kkws-xkb1
23
vulnerability VCID-qbdk-hxhg-wbh4
24
vulnerability VCID-r6bb-p28b-8fcn
25
vulnerability VCID-rdwq-93d6-c7b4
26
vulnerability VCID-rg5d-st3d-nbah
27
vulnerability VCID-uhg5-zpzt-e3gz
28
vulnerability VCID-ujbp-cc1r-wfe9
29
vulnerability VCID-v3h9-1t69-v7a3
30
vulnerability VCID-whyk-3ynn-zyf4
31
vulnerability VCID-x5e2-7whc-v3fc
32
vulnerability VCID-x94k-nxyd-27gs
33
vulnerability VCID-xg2f-12w4-yqge
34
vulnerability VCID-xw8r-fn6y-mbhp
35
vulnerability VCID-yeea-n94x-qqch
36
vulnerability VCID-yur3-am6j-w7ay
37
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.0a1
2
url pkg:pypi/ansible@2.8.9
purl pkg:pypi/ansible@2.8.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-atun-stks-4kcb
3
vulnerability VCID-axc3-wcsk-q3eg
4
vulnerability VCID-b8zs-br97-57av
5
vulnerability VCID-c1xg-s3kx-gkft
6
vulnerability VCID-d7ez-s7qb-p3ay
7
vulnerability VCID-dzdx-wae5-8ydy
8
vulnerability VCID-e3z2-ydhb-gqfg
9
vulnerability VCID-ezaq-tqd3-4yd1
10
vulnerability VCID-ezux-6buh-h7h7
11
vulnerability VCID-fj2p-7wkh-1fhq
12
vulnerability VCID-geaa-6dxx-tbcw
13
vulnerability VCID-h1n3-cmte-eugf
14
vulnerability VCID-hqar-fca3-cbht
15
vulnerability VCID-jrxz-b168-7ug4
16
vulnerability VCID-js7k-ptm9-2yh1
17
vulnerability VCID-qbdk-hxhg-wbh4
18
vulnerability VCID-rdwq-93d6-c7b4
19
vulnerability VCID-rg5d-st3d-nbah
20
vulnerability VCID-ujbp-cc1r-wfe9
21
vulnerability VCID-v3h9-1t69-v7a3
22
vulnerability VCID-whyk-3ynn-zyf4
23
vulnerability VCID-x94k-nxyd-27gs
24
vulnerability VCID-xg2f-12w4-yqge
25
vulnerability VCID-xw8r-fn6y-mbhp
26
vulnerability VCID-yeea-n94x-qqch
27
vulnerability VCID-yur3-am6j-w7ay
28
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.9
3
url pkg:pypi/ansible@2.8.11
purl pkg:pypi/ansible@2.8.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-atun-stks-4kcb
3
vulnerability VCID-axc3-wcsk-q3eg
4
vulnerability VCID-c1xg-s3kx-gkft
5
vulnerability VCID-dzdx-wae5-8ydy
6
vulnerability VCID-e3z2-ydhb-gqfg
7
vulnerability VCID-ezaq-tqd3-4yd1
8
vulnerability VCID-fj2p-7wkh-1fhq
9
vulnerability VCID-geaa-6dxx-tbcw
10
vulnerability VCID-jrxz-b168-7ug4
11
vulnerability VCID-js7k-ptm9-2yh1
12
vulnerability VCID-qbdk-hxhg-wbh4
13
vulnerability VCID-rdwq-93d6-c7b4
14
vulnerability VCID-rg5d-st3d-nbah
15
vulnerability VCID-ujbp-cc1r-wfe9
16
vulnerability VCID-v3h9-1t69-v7a3
17
vulnerability VCID-whyk-3ynn-zyf4
18
vulnerability VCID-x94k-nxyd-27gs
19
vulnerability VCID-xw8r-fn6y-mbhp
20
vulnerability VCID-yeea-n94x-qqch
21
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.11
4
url pkg:pypi/ansible@2.9.6
purl pkg:pypi/ansible@2.9.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3jej-4jyp-cqbt
1
vulnerability VCID-4yvf-k192-9fca
2
vulnerability VCID-682j-e2pu-1uee
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b8zs-br97-57av
6
vulnerability VCID-c1xg-s3kx-gkft
7
vulnerability VCID-d7ez-s7qb-p3ay
8
vulnerability VCID-dzdx-wae5-8ydy
9
vulnerability VCID-e3z2-ydhb-gqfg
10
vulnerability VCID-ezaq-tqd3-4yd1
11
vulnerability VCID-ezux-6buh-h7h7
12
vulnerability VCID-fj2p-7wkh-1fhq
13
vulnerability VCID-geaa-6dxx-tbcw
14
vulnerability VCID-h1n3-cmte-eugf
15
vulnerability VCID-hqar-fca3-cbht
16
vulnerability VCID-jrxz-b168-7ug4
17
vulnerability VCID-js7k-ptm9-2yh1
18
vulnerability VCID-qbdk-hxhg-wbh4
19
vulnerability VCID-rdwq-93d6-c7b4
20
vulnerability VCID-rg5d-st3d-nbah
21
vulnerability VCID-ujbp-cc1r-wfe9
22
vulnerability VCID-v3h9-1t69-v7a3
23
vulnerability VCID-whyk-3ynn-zyf4
24
vulnerability VCID-xg2f-12w4-yqge
25
vulnerability VCID-xw8r-fn6y-mbhp
26
vulnerability VCID-yeea-n94x-qqch
27
vulnerability VCID-yur3-am6j-w7ay
28
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.6
5
url pkg:pypi/ansible@2.9.7
purl pkg:pypi/ansible@2.9.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-atun-stks-4kcb
3
vulnerability VCID-axc3-wcsk-q3eg
4
vulnerability VCID-c1xg-s3kx-gkft
5
vulnerability VCID-dzdx-wae5-8ydy
6
vulnerability VCID-e3z2-ydhb-gqfg
7
vulnerability VCID-fj2p-7wkh-1fhq
8
vulnerability VCID-geaa-6dxx-tbcw
9
vulnerability VCID-jrxz-b168-7ug4
10
vulnerability VCID-js7k-ptm9-2yh1
11
vulnerability VCID-qbdk-hxhg-wbh4
12
vulnerability VCID-rdwq-93d6-c7b4
13
vulnerability VCID-rg5d-st3d-nbah
14
vulnerability VCID-ujbp-cc1r-wfe9
15
vulnerability VCID-v3h9-1t69-v7a3
16
vulnerability VCID-whyk-3ynn-zyf4
17
vulnerability VCID-xw8r-fn6y-mbhp
18
vulnerability VCID-yeea-n94x-qqch
19
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.7
aliases CVE-2020-1738, GHSA-f85h-23mf-2fwh, PYSEC-2020-10
risk_score 1.8
exploitability 0.5
weighted_severity 3.5
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-d7ez-s7qb-p3ay
5
url VCID-fetz-42jf-nqe8
vulnerability_id VCID-fetz-42jf-nqe8
summary An input validation vulnerability was found in Ansible's mysql_user module before 2.2.1.0, which may fail to correctly change a password in certain circumstances. Thus the previous password would still be active when it should have been changed.
references
0
reference_url https://access.redhat.com/errata/RHSA-2017:1685
reference_id
reference_type
scores
0
value 4.9
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2017:1685
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8647.json
reference_id
reference_type
scores
0
value 2.2
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8647.json
2
reference_url https://access.redhat.com/security/cve/CVE-2016-8647
reference_id
reference_type
scores
0
value 4.9
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/security/cve/CVE-2016-8647
3
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-8647
reference_id
reference_type
scores
0
value 0.00171
scoring_system epss
scoring_elements 0.38311
published_at 2026-04-08T12:55:00Z
1
value 0.00171
scoring_system epss
scoring_elements 0.3826
published_at 2026-04-07T12:55:00Z
2
value 0.00171
scoring_system epss
scoring_elements 0.38395
published_at 2026-04-04T12:55:00Z
3
value 0.00171
scoring_system epss
scoring_elements 0.38276
published_at 2026-04-13T12:55:00Z
4
value 0.00171
scoring_system epss
scoring_elements 0.38323
published_at 2026-04-16T12:55:00Z
5
value 0.00171
scoring_system epss
scoring_elements 0.38237
published_at 2026-04-21T12:55:00Z
6
value 0.00171
scoring_system epss
scoring_elements 0.38235
published_at 2026-04-01T12:55:00Z
7
value 0.00171
scoring_system epss
scoring_elements 0.38337
published_at 2026-04-11T12:55:00Z
8
value 0.00171
scoring_system epss
scoring_elements 0.38319
published_at 2026-04-09T12:55:00Z
9
value 0.00171
scoring_system epss
scoring_elements 0.38371
published_at 2026-04-02T12:55:00Z
10
value 0.00171
scoring_system epss
scoring_elements 0.38301
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-8647
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1396174
reference_id
reference_type
scores
0
value 4.9
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=1396174
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8647
reference_id
reference_type
scores
0
value 4.9
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8647
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8647
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8647
7
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.5
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:S/C:N/I:P/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
8
reference_url https://github.com/advisories/GHSA-x4cm-m36h-c6qj
reference_id
reference_type
scores
0
value 4.9
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
3
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/advisories/GHSA-x4cm-m36h-c6qj
9
reference_url https://github.com/ansible/ansible
reference_id
reference_type
scores
0
value 4.9
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible
10
reference_url https://github.com/ansible/ansible-modules-core/commit/30fb384e7fb9a94ac3929e4a650877e45d8834c9
reference_id
reference_type
scores
0
value 4.9
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible-modules-core/commit/30fb384e7fb9a94ac3929e4a650877e45d8834c9
11
reference_url https://github.com/ansible/ansible-modules-core/pull/5388
reference_id
reference_type
scores
0
value 4.9
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible-modules-core/pull/5388
12
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2018-58.yaml
reference_id
reference_type
scores
0
value 4.9
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2018-58.yaml
13
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844691
reference_id 844691
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844691
14
reference_url https://nvd.nist.gov/vuln/detail/CVE-2016-8647
reference_id CVE-2016-8647
reference_type
scores
0
value 4.9
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2016-8647
fixed_packages
0
url pkg:pypi/ansible@2.2.1.0
purl pkg:pypi/ansible@2.2.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-ae1r-yq1g-rkem
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b8zs-br97-57av
6
vulnerability VCID-c1xg-s3kx-gkft
7
vulnerability VCID-d4ka-dk4p-kfhb
8
vulnerability VCID-d7ez-s7qb-p3ay
9
vulnerability VCID-drt9-vx5r-akgm
10
vulnerability VCID-e3z2-ydhb-gqfg
11
vulnerability VCID-ezaq-tqd3-4yd1
12
vulnerability VCID-fj2p-7wkh-1fhq
13
vulnerability VCID-geaa-6dxx-tbcw
14
vulnerability VCID-hqar-fca3-cbht
15
vulnerability VCID-jhxm-379u-subt
16
vulnerability VCID-jnmu-c8dt-5yb6
17
vulnerability VCID-js7k-ptm9-2yh1
18
vulnerability VCID-kb5h-116p-33b4
19
vulnerability VCID-puq1-z5h7-pkdg
20
vulnerability VCID-qbdk-hxhg-wbh4
21
vulnerability VCID-r6bb-p28b-8fcn
22
vulnerability VCID-rdwq-93d6-c7b4
23
vulnerability VCID-rg5d-st3d-nbah
24
vulnerability VCID-rknj-nkgs-wyg2
25
vulnerability VCID-t6db-buke-nfhf
26
vulnerability VCID-tdp4-h4ht-pqhs
27
vulnerability VCID-ujbp-cc1r-wfe9
28
vulnerability VCID-v3h9-1t69-v7a3
29
vulnerability VCID-whyk-3ynn-zyf4
30
vulnerability VCID-wqm7-2ajr-6ue8
31
vulnerability VCID-x5e2-7whc-v3fc
32
vulnerability VCID-x94k-nxyd-27gs
33
vulnerability VCID-xw8r-fn6y-mbhp
34
vulnerability VCID-yeea-n94x-qqch
35
vulnerability VCID-ykxk-6mpc-wkgt
36
vulnerability VCID-yur3-am6j-w7ay
37
vulnerability VCID-zmr4-652z-r3dm
38
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.2.1.0
aliases CVE-2016-8647, GHSA-x4cm-m36h-c6qj, PYSEC-2018-58
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fetz-42jf-nqe8
6
url VCID-hfxe-jjf5-nqd1
vulnerability_id VCID-hfxe-jjf5-nqd1
summary A flaw was found in Ansible before version 2.2.0. The apt_key module does not properly verify key fingerprints, allowing remote adversary to create an OpenPGP key which matches the short key ID and inject this key instead of the correct key.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8614.json
reference_id
reference_type
scores
0
value 6.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8614.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-8614
reference_id
reference_type
scores
0
value 0.00079
scoring_system epss
scoring_elements 0.23404
published_at 2026-04-21T12:55:00Z
1
value 0.00079
scoring_system epss
scoring_elements 0.23423
published_at 2026-04-18T12:55:00Z
2
value 0.00079
scoring_system epss
scoring_elements 0.23428
published_at 2026-04-16T12:55:00Z
3
value 0.00079
scoring_system epss
scoring_elements 0.23411
published_at 2026-04-13T12:55:00Z
4
value 0.00079
scoring_system epss
scoring_elements 0.23465
published_at 2026-04-12T12:55:00Z
5
value 0.00079
scoring_system epss
scoring_elements 0.23504
published_at 2026-04-11T12:55:00Z
6
value 0.00079
scoring_system epss
scoring_elements 0.23486
published_at 2026-04-09T12:55:00Z
7
value 0.00079
scoring_system epss
scoring_elements 0.23436
published_at 2026-04-08T12:55:00Z
8
value 0.00079
scoring_system epss
scoring_elements 0.23363
published_at 2026-04-07T12:55:00Z
9
value 0.00079
scoring_system epss
scoring_elements 0.23582
published_at 2026-04-04T12:55:00Z
10
value 0.00079
scoring_system epss
scoring_elements 0.23544
published_at 2026-04-02T12:55:00Z
11
value 0.00079
scoring_system epss
scoring_elements 0.23383
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-8614
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8614
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8614
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8614
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8614
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:P/I:P/A:P
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://github.com/advisories/GHSA-cmwx-9m2h-x7v4
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
3
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/advisories/GHSA-cmwx-9m2h-x7v4
6
reference_url https://github.com/ansible/ansible
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible
7
reference_url https://github.com/ansible/ansible-modules-core/commit/1182d1f0b76d56f3667e27987a10b9ec8f03357d
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible-modules-core/commit/1182d1f0b76d56f3667e27987a10b9ec8f03357d
8
reference_url https://github.com/ansible/ansible-modules-core/commit/66d47c8149d84e52f64b7c4d1f340d45dca94d9c
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible-modules-core/commit/66d47c8149d84e52f64b7c4d1f340d45dca94d9c
9
reference_url https://github.com/ansible/ansible-modules-core/issues/5237
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible-modules-core/issues/5237
10
reference_url https://github.com/ansible/ansible-modules-core/pull/5353
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible-modules-core/pull/5353
11
reference_url https://github.com/ansible/ansible-modules-core/pull/5357
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible-modules-core/pull/5357
12
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2018-37.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2018-37.yaml
13
reference_url https://web.archive.org/web/20200227214450/https://www.securityfocus.com/bid/94108
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20200227214450/https://www.securityfocus.com/bid/94108
14
reference_url http://www.securityfocus.com/bid/94108
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/94108
15
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1388038
reference_id 1388038
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1388038
16
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842984
reference_id 842984
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842984
17
reference_url https://nvd.nist.gov/vuln/detail/CVE-2016-8614
reference_id CVE-2016-8614
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2016-8614
18
reference_url https://usn.ubuntu.com/7330-1/
reference_id USN-7330-1
reference_type
scores
url https://usn.ubuntu.com/7330-1/
fixed_packages
0
url pkg:pypi/ansible@2.2.0
purl pkg:pypi/ansible@2.2.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.2.0
1
url pkg:pypi/ansible@2.2.0.0
purl pkg:pypi/ansible@2.2.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-ae1r-yq1g-rkem
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b8zs-br97-57av
6
vulnerability VCID-c1xg-s3kx-gkft
7
vulnerability VCID-d4ka-dk4p-kfhb
8
vulnerability VCID-d7ez-s7qb-p3ay
9
vulnerability VCID-drt9-vx5r-akgm
10
vulnerability VCID-e3z2-ydhb-gqfg
11
vulnerability VCID-ezaq-tqd3-4yd1
12
vulnerability VCID-fetz-42jf-nqe8
13
vulnerability VCID-fj2p-7wkh-1fhq
14
vulnerability VCID-geaa-6dxx-tbcw
15
vulnerability VCID-hqar-fca3-cbht
16
vulnerability VCID-jhxm-379u-subt
17
vulnerability VCID-jnmu-c8dt-5yb6
18
vulnerability VCID-js7k-ptm9-2yh1
19
vulnerability VCID-kb5h-116p-33b4
20
vulnerability VCID-puq1-z5h7-pkdg
21
vulnerability VCID-qbdk-hxhg-wbh4
22
vulnerability VCID-r6bb-p28b-8fcn
23
vulnerability VCID-rdwq-93d6-c7b4
24
vulnerability VCID-rg5d-st3d-nbah
25
vulnerability VCID-rknj-nkgs-wyg2
26
vulnerability VCID-t6db-buke-nfhf
27
vulnerability VCID-tdp4-h4ht-pqhs
28
vulnerability VCID-ujbp-cc1r-wfe9
29
vulnerability VCID-v3h9-1t69-v7a3
30
vulnerability VCID-whyk-3ynn-zyf4
31
vulnerability VCID-wqm7-2ajr-6ue8
32
vulnerability VCID-x5e2-7whc-v3fc
33
vulnerability VCID-x94k-nxyd-27gs
34
vulnerability VCID-xw8r-fn6y-mbhp
35
vulnerability VCID-yc8n-wxb4-1uaz
36
vulnerability VCID-yeea-n94x-qqch
37
vulnerability VCID-ykxk-6mpc-wkgt
38
vulnerability VCID-yur3-am6j-w7ay
39
vulnerability VCID-zmr4-652z-r3dm
40
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.2.0.0
aliases CVE-2016-8614, GHSA-cmwx-9m2h-x7v4, PYSEC-2018-37
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hfxe-jjf5-nqd1
7
url VCID-hqar-fca3-cbht
vulnerability_id VCID-hqar-fca3-cbht
summary A race condition flaw was found in Ansible Engine 2.7.17 and prior, 2.8.9 and prior, 2.9.6 and prior when running a playbook with an unprivileged become user. When Ansible needs to run a module with become user, the temporary directory is created in /var/tmp. This directory is created with "umask 77 && mkdir -p <dir>"; this operation does not fail if the directory already exists and is owned by another user. An attacker could take advantage to gain control of the become user as the target directory can be retrieved by iterating '/proc/<pid>/cmdline'.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1733.json
reference_id
reference_type
scores
0
value 5.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1733.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-1733
reference_id
reference_type
scores
0
value 0.00027
scoring_system epss
scoring_elements 0.07541
published_at 2026-04-21T12:55:00Z
1
value 0.00029
scoring_system epss
scoring_elements 0.08136
published_at 2026-04-16T12:55:00Z
2
value 0.00029
scoring_system epss
scoring_elements 0.08244
published_at 2026-04-13T12:55:00Z
3
value 0.00029
scoring_system epss
scoring_elements 0.08262
published_at 2026-04-12T12:55:00Z
4
value 0.00029
scoring_system epss
scoring_elements 0.08283
published_at 2026-04-11T12:55:00Z
5
value 0.00029
scoring_system epss
scoring_elements 0.08291
published_at 2026-04-09T12:55:00Z
6
value 0.00029
scoring_system epss
scoring_elements 0.08272
published_at 2026-04-08T12:55:00Z
7
value 0.00029
scoring_system epss
scoring_elements 0.08208
published_at 2026-04-07T12:55:00Z
8
value 0.00029
scoring_system epss
scoring_elements 0.08259
published_at 2026-04-04T12:55:00Z
9
value 0.00029
scoring_system epss
scoring_elements 0.08205
published_at 2026-04-02T12:55:00Z
10
value 0.00029
scoring_system epss
scoring_elements 0.08123
published_at 2026-04-18T12:55:00Z
11
value 0.00029
scoring_system epss
scoring_elements 0.08146
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-1733
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1733
reference_id
reference_type
scores
0
value 5.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L
1
value 1.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L
2
value LOW
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1733
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10156
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10156
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10206
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10206
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14846
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14846
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14864
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14864
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14904
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14904
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10684
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10684
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10685
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10685
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10729
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10729
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14330
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14330
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14332
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14332
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14365
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14365
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1733
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1733
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1735
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1735
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1739
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1739
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1740
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1740
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1746
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1746
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1753
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1753
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20228
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20228
21
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
22
reference_url https://github.com/advisories/GHSA-g4mq-6fp5-qwcf
reference_id
reference_type
scores
0
value 5.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L
1
value LOW
scoring_system cvssv3.1_qr
scoring_elements
2
value 1.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L
3
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/advisories/GHSA-g4mq-6fp5-qwcf
23
reference_url https://github.com/ansible/ansible
reference_id
reference_type
scores
0
value 5.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L
1
value 1.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L
2
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible
24
reference_url https://github.com/ansible/ansible/commit/80b9a0a25c5f75e84aefc8f2b293fb1933b154f2
reference_id
reference_type
scores
0
value 5.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L
1
value 1.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L
2
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/80b9a0a25c5f75e84aefc8f2b293fb1933b154f2
25
reference_url https://github.com/ansible/ansible/commit/8251d9f4c2bc82632ab992277fcd30ccbf87aa47
reference_id
reference_type
scores
0
value 5.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L
1
value 1.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L
2
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/8251d9f4c2bc82632ab992277fcd30ccbf87aa47
26
reference_url https://github.com/ansible/ansible/commit/ecf99d5e1ff732a7777010facd6c98bb0994605e
reference_id
reference_type
scores
0
value 5.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L
1
value 1.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L
2
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/ecf99d5e1ff732a7777010facd6c98bb0994605e
27
reference_url https://github.com/ansible/ansible/issues/67791
reference_id
reference_type
scores
0
value 5.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L
1
value 1.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L
2
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/issues/67791
28
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2020-5.yaml
reference_id
reference_type
scores
0
value 5.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L
1
value 1.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L
2
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2020-5.yaml
29
reference_url https://lists.debian.org/debian-lts-announce/2020/05/msg00005.html
reference_id
reference_type
scores
0
value 5.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L
1
value 1.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L
2
value LOW
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2020/05/msg00005.html
30
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DKPA4KC3OJSUFASUYMG66HKJE7ADNGFW/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DKPA4KC3OJSUFASUYMG66HKJE7ADNGFW/
31
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MRRYUU5ZBLPBXCYG6CFP35D64NP2UB2S/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MRRYUU5ZBLPBXCYG6CFP35D64NP2UB2S/
32
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WQVOQD4VAIXXTVQAJKTN7NUGTJFE2PCB/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WQVOQD4VAIXXTVQAJKTN7NUGTJFE2PCB/
33
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DKPA4KC3OJSUFASUYMG66HKJE7ADNGFW
reference_id
reference_type
scores
0
value 5.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L
1
value 1.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L
2
value LOW
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DKPA4KC3OJSUFASUYMG66HKJE7ADNGFW
34
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DKPA4KC3OJSUFASUYMG66HKJE7ADNGFW/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DKPA4KC3OJSUFASUYMG66HKJE7ADNGFW/
35
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MRRYUU5ZBLPBXCYG6CFP35D64NP2UB2S
reference_id
reference_type
scores
0
value 5.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L
1
value 1.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L
2
value LOW
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MRRYUU5ZBLPBXCYG6CFP35D64NP2UB2S
36
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MRRYUU5ZBLPBXCYG6CFP35D64NP2UB2S/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MRRYUU5ZBLPBXCYG6CFP35D64NP2UB2S/
37
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WQVOQD4VAIXXTVQAJKTN7NUGTJFE2PCB
reference_id
reference_type
scores
0
value 5.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L
1
value 1.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L
2
value LOW
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WQVOQD4VAIXXTVQAJKTN7NUGTJFE2PCB
38
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WQVOQD4VAIXXTVQAJKTN7NUGTJFE2PCB/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WQVOQD4VAIXXTVQAJKTN7NUGTJFE2PCB/
39
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-1733
reference_id
reference_type
scores
0
value 3.7
scoring_system cvssv2
scoring_elements AV:L/AC:H/Au:N/C:P/I:P/A:P
1
value 5.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L
2
value 1.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L
3
value LOW
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2020-1733
40
reference_url https://security.gentoo.org/glsa/202006-11
reference_id
reference_type
scores
0
value 5.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L
1
value 1.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L
2
value LOW
scoring_system generic_textual
scoring_elements
url https://security.gentoo.org/glsa/202006-11
41
reference_url https://www.debian.org/security/2021/dsa-4950
reference_id
reference_type
scores
0
value 5.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L
1
value 1.0
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L
2
value LOW
scoring_system generic_textual
scoring_elements
url https://www.debian.org/security/2021/dsa-4950
42
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1801735
reference_id 1801735
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1801735
43
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:ansible:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible:*:*:*:*:*:*:*:*
44
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_tower:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:ansible_tower:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_tower:*:*:*:*:*:*:*:*
45
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:cloudforms_management_engine:5.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:cloudforms_management_engine:5.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:cloudforms_management_engine:5.0:*:*:*:*:*:*:*
46
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*
47
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
48
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
49
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
reference_id cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
50
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
reference_id cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
51
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
reference_id cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
52
reference_url https://access.redhat.com/errata/RHSA-2020:1541
reference_id RHSA-2020:1541
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1541
53
reference_url https://access.redhat.com/errata/RHSA-2020:1542
reference_id RHSA-2020:1542
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1542
54
reference_url https://access.redhat.com/errata/RHSA-2020:1543
reference_id RHSA-2020:1543
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1543
55
reference_url https://access.redhat.com/errata/RHSA-2020:1544
reference_id RHSA-2020:1544
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1544
56
reference_url https://usn.ubuntu.com/USN-5315-1/
reference_id USN-USN-5315-1
reference_type
scores
url https://usn.ubuntu.com/USN-5315-1/
fixed_packages
0
url pkg:pypi/ansible@2.7.17
purl pkg:pypi/ansible@2.7.17
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-atun-stks-4kcb
3
vulnerability VCID-axc3-wcsk-q3eg
4
vulnerability VCID-c1xg-s3kx-gkft
5
vulnerability VCID-dzdx-wae5-8ydy
6
vulnerability VCID-e3z2-ydhb-gqfg
7
vulnerability VCID-ezaq-tqd3-4yd1
8
vulnerability VCID-fj2p-7wkh-1fhq
9
vulnerability VCID-geaa-6dxx-tbcw
10
vulnerability VCID-jnmu-c8dt-5yb6
11
vulnerability VCID-js7k-ptm9-2yh1
12
vulnerability VCID-qbdk-hxhg-wbh4
13
vulnerability VCID-r6bb-p28b-8fcn
14
vulnerability VCID-rdwq-93d6-c7b4
15
vulnerability VCID-rg5d-st3d-nbah
16
vulnerability VCID-ujbp-cc1r-wfe9
17
vulnerability VCID-v3h9-1t69-v7a3
18
vulnerability VCID-whyk-3ynn-zyf4
19
vulnerability VCID-x94k-nxyd-27gs
20
vulnerability VCID-xw8r-fn6y-mbhp
21
vulnerability VCID-yeea-n94x-qqch
22
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.17
1
url pkg:pypi/ansible@2.8.8
purl pkg:pypi/ansible@2.8.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-ae1r-yq1g-rkem
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b8zs-br97-57av
6
vulnerability VCID-c1xg-s3kx-gkft
7
vulnerability VCID-d7ez-s7qb-p3ay
8
vulnerability VCID-dzdx-wae5-8ydy
9
vulnerability VCID-e3z2-ydhb-gqfg
10
vulnerability VCID-ezaq-tqd3-4yd1
11
vulnerability VCID-ezux-6buh-h7h7
12
vulnerability VCID-fj2p-7wkh-1fhq
13
vulnerability VCID-geaa-6dxx-tbcw
14
vulnerability VCID-h1n3-cmte-eugf
15
vulnerability VCID-hqar-fca3-cbht
16
vulnerability VCID-jrxz-b168-7ug4
17
vulnerability VCID-js7k-ptm9-2yh1
18
vulnerability VCID-qbdk-hxhg-wbh4
19
vulnerability VCID-rdwq-93d6-c7b4
20
vulnerability VCID-rg5d-st3d-nbah
21
vulnerability VCID-ujbp-cc1r-wfe9
22
vulnerability VCID-v3h9-1t69-v7a3
23
vulnerability VCID-whyk-3ynn-zyf4
24
vulnerability VCID-x94k-nxyd-27gs
25
vulnerability VCID-xg2f-12w4-yqge
26
vulnerability VCID-xw8r-fn6y-mbhp
27
vulnerability VCID-yeea-n94x-qqch
28
vulnerability VCID-yur3-am6j-w7ay
29
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.8
2
url pkg:pypi/ansible@2.8.11
purl pkg:pypi/ansible@2.8.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-atun-stks-4kcb
3
vulnerability VCID-axc3-wcsk-q3eg
4
vulnerability VCID-c1xg-s3kx-gkft
5
vulnerability VCID-dzdx-wae5-8ydy
6
vulnerability VCID-e3z2-ydhb-gqfg
7
vulnerability VCID-ezaq-tqd3-4yd1
8
vulnerability VCID-fj2p-7wkh-1fhq
9
vulnerability VCID-geaa-6dxx-tbcw
10
vulnerability VCID-jrxz-b168-7ug4
11
vulnerability VCID-js7k-ptm9-2yh1
12
vulnerability VCID-qbdk-hxhg-wbh4
13
vulnerability VCID-rdwq-93d6-c7b4
14
vulnerability VCID-rg5d-st3d-nbah
15
vulnerability VCID-ujbp-cc1r-wfe9
16
vulnerability VCID-v3h9-1t69-v7a3
17
vulnerability VCID-whyk-3ynn-zyf4
18
vulnerability VCID-x94k-nxyd-27gs
19
vulnerability VCID-xw8r-fn6y-mbhp
20
vulnerability VCID-yeea-n94x-qqch
21
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.11
3
url pkg:pypi/ansible@2.9.6
purl pkg:pypi/ansible@2.9.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3jej-4jyp-cqbt
1
vulnerability VCID-4yvf-k192-9fca
2
vulnerability VCID-682j-e2pu-1uee
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b8zs-br97-57av
6
vulnerability VCID-c1xg-s3kx-gkft
7
vulnerability VCID-d7ez-s7qb-p3ay
8
vulnerability VCID-dzdx-wae5-8ydy
9
vulnerability VCID-e3z2-ydhb-gqfg
10
vulnerability VCID-ezaq-tqd3-4yd1
11
vulnerability VCID-ezux-6buh-h7h7
12
vulnerability VCID-fj2p-7wkh-1fhq
13
vulnerability VCID-geaa-6dxx-tbcw
14
vulnerability VCID-h1n3-cmte-eugf
15
vulnerability VCID-hqar-fca3-cbht
16
vulnerability VCID-jrxz-b168-7ug4
17
vulnerability VCID-js7k-ptm9-2yh1
18
vulnerability VCID-qbdk-hxhg-wbh4
19
vulnerability VCID-rdwq-93d6-c7b4
20
vulnerability VCID-rg5d-st3d-nbah
21
vulnerability VCID-ujbp-cc1r-wfe9
22
vulnerability VCID-v3h9-1t69-v7a3
23
vulnerability VCID-whyk-3ynn-zyf4
24
vulnerability VCID-xg2f-12w4-yqge
25
vulnerability VCID-xw8r-fn6y-mbhp
26
vulnerability VCID-yeea-n94x-qqch
27
vulnerability VCID-yur3-am6j-w7ay
28
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.6
4
url pkg:pypi/ansible@2.9.7
purl pkg:pypi/ansible@2.9.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-atun-stks-4kcb
3
vulnerability VCID-axc3-wcsk-q3eg
4
vulnerability VCID-c1xg-s3kx-gkft
5
vulnerability VCID-dzdx-wae5-8ydy
6
vulnerability VCID-e3z2-ydhb-gqfg
7
vulnerability VCID-fj2p-7wkh-1fhq
8
vulnerability VCID-geaa-6dxx-tbcw
9
vulnerability VCID-jrxz-b168-7ug4
10
vulnerability VCID-js7k-ptm9-2yh1
11
vulnerability VCID-qbdk-hxhg-wbh4
12
vulnerability VCID-rdwq-93d6-c7b4
13
vulnerability VCID-rg5d-st3d-nbah
14
vulnerability VCID-ujbp-cc1r-wfe9
15
vulnerability VCID-v3h9-1t69-v7a3
16
vulnerability VCID-whyk-3ynn-zyf4
17
vulnerability VCID-xw8r-fn6y-mbhp
18
vulnerability VCID-yeea-n94x-qqch
19
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.7
aliases CVE-2020-1733, GHSA-g4mq-6fp5-qwcf, PYSEC-2020-5
risk_score 2.2
exploitability 0.5
weighted_severity 4.5
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hqar-fca3-cbht
8
url VCID-kb5h-116p-33b4
vulnerability_id VCID-kb5h-116p-33b4
summary In Ansible, all Ansible Engine versions up to ansible-engine 2.8.5, ansible-engine 2.7.13, ansible-engine 2.6.19, were logging at the DEBUG level which lead to a disclosure of credentials if a plugin used a library that logged credentials at the DEBUG level. This flaw does not affect Ansible modules, as those are executed in a separate process.
references
0
reference_url http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00021.html
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00021.html
1
reference_url http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00026.html
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00026.html
2
reference_url https://access.redhat.com/errata/RHSA-2019:3201
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2019:3201
3
reference_url https://access.redhat.com/errata/RHSA-2019:3202
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2019:3202
4
reference_url https://access.redhat.com/errata/RHSA-2019:3203
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2019:3203
5
reference_url https://access.redhat.com/errata/RHSA-2019:3207
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2019:3207
6
reference_url https://access.redhat.com/errata/RHSA-2020:0756
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2020:0756
7
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14846.json
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14846.json
8
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-14846
reference_id
reference_type
scores
0
value 0.00116
scoring_system epss
scoring_elements 0.3028
published_at 2026-04-21T12:55:00Z
1
value 0.00127
scoring_system epss
scoring_elements 0.31978
published_at 2026-04-16T12:55:00Z
2
value 0.00127
scoring_system epss
scoring_elements 0.31957
published_at 2026-04-18T12:55:00Z
3
value 0.00153
scoring_system epss
scoring_elements 0.36104
published_at 2026-04-02T12:55:00Z
4
value 0.00153
scoring_system epss
scoring_elements 0.36134
published_at 2026-04-04T12:55:00Z
5
value 0.00153
scoring_system epss
scoring_elements 0.3597
published_at 2026-04-07T12:55:00Z
6
value 0.00153
scoring_system epss
scoring_elements 0.36019
published_at 2026-04-08T12:55:00Z
7
value 0.00153
scoring_system epss
scoring_elements 0.36043
published_at 2026-04-09T12:55:00Z
8
value 0.00153
scoring_system epss
scoring_elements 0.36048
published_at 2026-04-11T12:55:00Z
9
value 0.00153
scoring_system epss
scoring_elements 0.3601
published_at 2026-04-12T12:55:00Z
10
value 0.00153
scoring_system epss
scoring_elements 0.35985
published_at 2026-04-13T12:55:00Z
11
value 0.00153
scoring_system epss
scoring_elements 0.35913
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-14846
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14846
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14846
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10156
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10156
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10206
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10206
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14846
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14846
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14864
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14864
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14904
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14904
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10684
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10684
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10685
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10685
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10729
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10729
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14330
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14330
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14332
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14332
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14365
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14365
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1733
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1733
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1735
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1735
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1739
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1739
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1740
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1740
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1746
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1746
26
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1753
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1753
27
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20228
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20228
28
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 2.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
29
reference_url https://github.com/ansible/ansible
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible
30
reference_url https://github.com/ansible/ansible/commit/90e74dd2600e5cc42dd9b4f4656f3d651c4ce5c4
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/90e74dd2600e5cc42dd9b4f4656f3d651c4ce5c4
31
reference_url https://github.com/ansible/ansible/commit/cb0f535a8b254a2daf69cd067e842fabb2993034
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/cb0f535a8b254a2daf69cd067e842fabb2993034
32
reference_url https://github.com/ansible/ansible/commit/d961f676c01023a6a21503df16ba551a550e515b
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/d961f676c01023a6a21503df16ba551a550e515b
33
reference_url https://github.com/ansible/ansible/pull/63366
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/pull/63366
34
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2019-4.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2019-4.yaml
35
reference_url https://lists.debian.org/debian-lts-announce/2020/05/msg00005.html
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2020/05/msg00005.html
36
reference_url https://lists.debian.org/debian-lts-announce/2021/01/msg00023.html
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2021/01/msg00023.html
37
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-14846
reference_id
reference_type
scores
0
value 2.1
scoring_system cvssv2
scoring_elements AV:L/AC:L/Au:N/C:P/I:N/A:N
1
value 7.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
2
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
3
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
4
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2019-14846
38
reference_url https://www.debian.org/security/2021/dsa-4950
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.debian.org/security/2021/dsa-4950
39
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1755373
reference_id 1755373
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1755373
40
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=942188
reference_id 942188
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=942188
41
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:opensuse:backports_sle:15.0:sp1:*:*:*:*:*:*
reference_id cpe:2.3:a:opensuse:backports_sle:15.0:sp1:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:opensuse:backports_sle:15.0:sp1:*:*:*:*:*:*
42
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:ansible_engine:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:*:*:*:*:*:*:*:*
43
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:ansible_engine:2.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.0:*:*:*:*:*:*:*
44
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:ansible_engine:2.8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.8.0:*:*:*:*:*:*:*
45
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*
46
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
47
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
48
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
49
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
reference_id cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
50
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
51
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:8.0:*:*:*:*:*:*:*
52
reference_url https://github.com/advisories/GHSA-pm48-cvv2-29q5
reference_id GHSA-pm48-cvv2-29q5
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-pm48-cvv2-29q5
53
reference_url https://usn.ubuntu.com/7330-1/
reference_id USN-7330-1
reference_type
scores
url https://usn.ubuntu.com/7330-1/
fixed_packages
0
url pkg:pypi/ansible@2.6.20
purl pkg:pypi/ansible@2.6.20
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-ae1r-yq1g-rkem
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b8zs-br97-57av
6
vulnerability VCID-c1xg-s3kx-gkft
7
vulnerability VCID-d4ka-dk4p-kfhb
8
vulnerability VCID-d7ez-s7qb-p3ay
9
vulnerability VCID-dzdx-wae5-8ydy
10
vulnerability VCID-e3z2-ydhb-gqfg
11
vulnerability VCID-ezaq-tqd3-4yd1
12
vulnerability VCID-fj2p-7wkh-1fhq
13
vulnerability VCID-geaa-6dxx-tbcw
14
vulnerability VCID-hqar-fca3-cbht
15
vulnerability VCID-jnmu-c8dt-5yb6
16
vulnerability VCID-js7k-ptm9-2yh1
17
vulnerability VCID-qbdk-hxhg-wbh4
18
vulnerability VCID-rdwq-93d6-c7b4
19
vulnerability VCID-rg5d-st3d-nbah
20
vulnerability VCID-tdp4-h4ht-pqhs
21
vulnerability VCID-ujbp-cc1r-wfe9
22
vulnerability VCID-v3h9-1t69-v7a3
23
vulnerability VCID-whyk-3ynn-zyf4
24
vulnerability VCID-x94k-nxyd-27gs
25
vulnerability VCID-xw8r-fn6y-mbhp
26
vulnerability VCID-yeea-n94x-qqch
27
vulnerability VCID-yur3-am6j-w7ay
28
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.6.20
1
url pkg:pypi/ansible@2.7.14
purl pkg:pypi/ansible@2.7.14
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-a49n-tvnt-p3df
3
vulnerability VCID-ae1r-yq1g-rkem
4
vulnerability VCID-atun-stks-4kcb
5
vulnerability VCID-axc3-wcsk-q3eg
6
vulnerability VCID-b8zs-br97-57av
7
vulnerability VCID-c1xg-s3kx-gkft
8
vulnerability VCID-d4ka-dk4p-kfhb
9
vulnerability VCID-d7ez-s7qb-p3ay
10
vulnerability VCID-dagf-buer-4ffr
11
vulnerability VCID-dzdx-wae5-8ydy
12
vulnerability VCID-e3z2-ydhb-gqfg
13
vulnerability VCID-ezaq-tqd3-4yd1
14
vulnerability VCID-ezux-6buh-h7h7
15
vulnerability VCID-fj2p-7wkh-1fhq
16
vulnerability VCID-geaa-6dxx-tbcw
17
vulnerability VCID-h1n3-cmte-eugf
18
vulnerability VCID-hqar-fca3-cbht
19
vulnerability VCID-jnmu-c8dt-5yb6
20
vulnerability VCID-js7k-ptm9-2yh1
21
vulnerability VCID-qbdk-hxhg-wbh4
22
vulnerability VCID-r6bb-p28b-8fcn
23
vulnerability VCID-rdwq-93d6-c7b4
24
vulnerability VCID-rg5d-st3d-nbah
25
vulnerability VCID-tdp4-h4ht-pqhs
26
vulnerability VCID-uhg5-zpzt-e3gz
27
vulnerability VCID-ujbp-cc1r-wfe9
28
vulnerability VCID-v3h9-1t69-v7a3
29
vulnerability VCID-whyk-3ynn-zyf4
30
vulnerability VCID-x94k-nxyd-27gs
31
vulnerability VCID-xg2f-12w4-yqge
32
vulnerability VCID-xw8r-fn6y-mbhp
33
vulnerability VCID-yeea-n94x-qqch
34
vulnerability VCID-yur3-am6j-w7ay
35
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.14
2
url pkg:pypi/ansible@2.8.6
purl pkg:pypi/ansible@2.8.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-a49n-tvnt-p3df
3
vulnerability VCID-ae1r-yq1g-rkem
4
vulnerability VCID-atun-stks-4kcb
5
vulnerability VCID-axc3-wcsk-q3eg
6
vulnerability VCID-b8zs-br97-57av
7
vulnerability VCID-c1xg-s3kx-gkft
8
vulnerability VCID-d4ka-dk4p-kfhb
9
vulnerability VCID-d7ez-s7qb-p3ay
10
vulnerability VCID-dagf-buer-4ffr
11
vulnerability VCID-dzdx-wae5-8ydy
12
vulnerability VCID-e3z2-ydhb-gqfg
13
vulnerability VCID-ezaq-tqd3-4yd1
14
vulnerability VCID-ezux-6buh-h7h7
15
vulnerability VCID-fj2p-7wkh-1fhq
16
vulnerability VCID-geaa-6dxx-tbcw
17
vulnerability VCID-h1n3-cmte-eugf
18
vulnerability VCID-hqar-fca3-cbht
19
vulnerability VCID-jrxz-b168-7ug4
20
vulnerability VCID-js7k-ptm9-2yh1
21
vulnerability VCID-qbdk-hxhg-wbh4
22
vulnerability VCID-rdwq-93d6-c7b4
23
vulnerability VCID-rg5d-st3d-nbah
24
vulnerability VCID-tdp4-h4ht-pqhs
25
vulnerability VCID-uhg5-zpzt-e3gz
26
vulnerability VCID-ujbp-cc1r-wfe9
27
vulnerability VCID-v3h9-1t69-v7a3
28
vulnerability VCID-whyk-3ynn-zyf4
29
vulnerability VCID-x94k-nxyd-27gs
30
vulnerability VCID-xg2f-12w4-yqge
31
vulnerability VCID-xw8r-fn6y-mbhp
32
vulnerability VCID-yeea-n94x-qqch
33
vulnerability VCID-yur3-am6j-w7ay
34
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.6
3
url pkg:pypi/ansible@2.9.0b1
purl pkg:pypi/ansible@2.9.0b1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3jej-4jyp-cqbt
1
vulnerability VCID-4yvf-k192-9fca
2
vulnerability VCID-682j-e2pu-1uee
3
vulnerability VCID-a49n-tvnt-p3df
4
vulnerability VCID-ae1r-yq1g-rkem
5
vulnerability VCID-atun-stks-4kcb
6
vulnerability VCID-axc3-wcsk-q3eg
7
vulnerability VCID-b8zs-br97-57av
8
vulnerability VCID-c1xg-s3kx-gkft
9
vulnerability VCID-d4ka-dk4p-kfhb
10
vulnerability VCID-d7ez-s7qb-p3ay
11
vulnerability VCID-dzdx-wae5-8ydy
12
vulnerability VCID-e3z2-ydhb-gqfg
13
vulnerability VCID-ezaq-tqd3-4yd1
14
vulnerability VCID-ezux-6buh-h7h7
15
vulnerability VCID-fj2p-7wkh-1fhq
16
vulnerability VCID-geaa-6dxx-tbcw
17
vulnerability VCID-h1n3-cmte-eugf
18
vulnerability VCID-hqar-fca3-cbht
19
vulnerability VCID-jnmu-c8dt-5yb6
20
vulnerability VCID-jrxz-b168-7ug4
21
vulnerability VCID-js7k-ptm9-2yh1
22
vulnerability VCID-qbdk-hxhg-wbh4
23
vulnerability VCID-rdwq-93d6-c7b4
24
vulnerability VCID-rg5d-st3d-nbah
25
vulnerability VCID-uhg5-zpzt-e3gz
26
vulnerability VCID-ujbp-cc1r-wfe9
27
vulnerability VCID-v3h9-1t69-v7a3
28
vulnerability VCID-whyk-3ynn-zyf4
29
vulnerability VCID-x94k-nxyd-27gs
30
vulnerability VCID-xg2f-12w4-yqge
31
vulnerability VCID-xw8r-fn6y-mbhp
32
vulnerability VCID-yeea-n94x-qqch
33
vulnerability VCID-yur3-am6j-w7ay
34
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.0b1
aliases CVE-2019-14846, GHSA-pm48-cvv2-29q5, PYSEC-2019-4
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kb5h-116p-33b4
9
url VCID-q4q1-aueh-sub2
vulnerability_id VCID-q4q1-aueh-sub2
summary Ansible before version 2.2.0 fails to properly sanitize fact variables sent from the Ansible controller. An attacker with the ability to create special variables on the controller could execute arbitrary commands on Ansible clients as the user Ansible runs as.
references
0
reference_url https://access.redhat.com/errata/RHSA-2016:2778
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
1
value 9.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2016:2778
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8628.json
reference_id
reference_type
scores
0
value 7.6
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8628.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-8628
reference_id
reference_type
scores
0
value 0.00422
scoring_system epss
scoring_elements 0.62086
published_at 2026-04-13T12:55:00Z
1
value 0.00422
scoring_system epss
scoring_elements 0.62107
published_at 2026-04-12T12:55:00Z
2
value 0.00422
scoring_system epss
scoring_elements 0.62118
published_at 2026-04-11T12:55:00Z
3
value 0.00422
scoring_system epss
scoring_elements 0.62098
published_at 2026-04-09T12:55:00Z
4
value 0.00422
scoring_system epss
scoring_elements 0.6208
published_at 2026-04-08T12:55:00Z
5
value 0.00422
scoring_system epss
scoring_elements 0.62031
published_at 2026-04-07T12:55:00Z
6
value 0.00422
scoring_system epss
scoring_elements 0.61959
published_at 2026-04-01T12:55:00Z
7
value 0.00422
scoring_system epss
scoring_elements 0.62061
published_at 2026-04-04T12:55:00Z
8
value 0.00422
scoring_system epss
scoring_elements 0.6203
published_at 2026-04-02T12:55:00Z
9
value 0.00422
scoring_system epss
scoring_elements 0.6212
published_at 2026-04-21T12:55:00Z
10
value 0.00422
scoring_system epss
scoring_elements 0.62136
published_at 2026-04-18T12:55:00Z
11
value 0.00422
scoring_system epss
scoring_elements 0.6213
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-8628
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8628
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
1
value 9.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8628
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8628
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8628
5
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:S/C:P/I:P/A:P
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
6
reference_url https://github.com/advisories/GHSA-jg4f-jqm5-4mgq
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
1
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
2
value 9.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
3
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/advisories/GHSA-jg4f-jqm5-4mgq
7
reference_url https://github.com/ansible/ansible
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
1
value 9.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible
8
reference_url https://github.com/ansible/ansible/commit/35938b907dfcd1106ca40b794f0db446bdb8cf09
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
1
value 9.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/35938b907dfcd1106ca40b794f0db446bdb8cf09
9
reference_url https://github.com/ansible/ansible/issues/41903
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
1
value 9.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/issues/41903
10
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2018-38.yaml
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
1
value 9.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2018-38.yaml
11
reference_url https://web.archive.org/web/20200227214455/http://www.securityfocus.com/bid/94109
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
1
value 9.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20200227214455/http://www.securityfocus.com/bid/94109
12
reference_url http://www.securityfocus.com/bid/94109
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/94109
13
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1388113
reference_id 1388113
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1388113
14
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842985
reference_id 842985
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=842985
15
reference_url https://nvd.nist.gov/vuln/detail/CVE-2016-8628
reference_id CVE-2016-8628
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
1
value 9.4
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2016-8628
fixed_packages
0
url pkg:pypi/ansible@2.2.0
purl pkg:pypi/ansible@2.2.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.2.0
1
url pkg:pypi/ansible@2.2.0.0
purl pkg:pypi/ansible@2.2.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-ae1r-yq1g-rkem
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b8zs-br97-57av
6
vulnerability VCID-c1xg-s3kx-gkft
7
vulnerability VCID-d4ka-dk4p-kfhb
8
vulnerability VCID-d7ez-s7qb-p3ay
9
vulnerability VCID-drt9-vx5r-akgm
10
vulnerability VCID-e3z2-ydhb-gqfg
11
vulnerability VCID-ezaq-tqd3-4yd1
12
vulnerability VCID-fetz-42jf-nqe8
13
vulnerability VCID-fj2p-7wkh-1fhq
14
vulnerability VCID-geaa-6dxx-tbcw
15
vulnerability VCID-hqar-fca3-cbht
16
vulnerability VCID-jhxm-379u-subt
17
vulnerability VCID-jnmu-c8dt-5yb6
18
vulnerability VCID-js7k-ptm9-2yh1
19
vulnerability VCID-kb5h-116p-33b4
20
vulnerability VCID-puq1-z5h7-pkdg
21
vulnerability VCID-qbdk-hxhg-wbh4
22
vulnerability VCID-r6bb-p28b-8fcn
23
vulnerability VCID-rdwq-93d6-c7b4
24
vulnerability VCID-rg5d-st3d-nbah
25
vulnerability VCID-rknj-nkgs-wyg2
26
vulnerability VCID-t6db-buke-nfhf
27
vulnerability VCID-tdp4-h4ht-pqhs
28
vulnerability VCID-ujbp-cc1r-wfe9
29
vulnerability VCID-v3h9-1t69-v7a3
30
vulnerability VCID-whyk-3ynn-zyf4
31
vulnerability VCID-wqm7-2ajr-6ue8
32
vulnerability VCID-x5e2-7whc-v3fc
33
vulnerability VCID-x94k-nxyd-27gs
34
vulnerability VCID-xw8r-fn6y-mbhp
35
vulnerability VCID-yc8n-wxb4-1uaz
36
vulnerability VCID-yeea-n94x-qqch
37
vulnerability VCID-ykxk-6mpc-wkgt
38
vulnerability VCID-yur3-am6j-w7ay
39
vulnerability VCID-zmr4-652z-r3dm
40
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.2.0.0
aliases CVE-2016-8628, GHSA-jg4f-jqm5-4mgq, PYSEC-2018-38
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-q4q1-aueh-sub2
10
url VCID-r6bb-p28b-8fcn
vulnerability_id VCID-r6bb-p28b-8fcn
summary Execution of Ansible playbooks on Windows platforms with PowerShell ScriptBlock logging and Module logging enabled can allow for 'become' passwords to appear in EventLogs in plaintext. A local user with administrator privileges on the machine can view these logs and discover the plaintext password. Ansible Engine 2.8 and older are believed to be vulnerable.
references
0
reference_url http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00021.html
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
1
value 6.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00021.html
1
reference_url http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00077.html
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
1
value 6.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00077.html
2
reference_url http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00020.html
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
1
value 6.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00020.html
3
reference_url https://access.redhat.com/errata/RHSA-2018:3770
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
1
value 6.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:3770
4
reference_url https://access.redhat.com/errata/RHSA-2018:3771
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
1
value 6.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:3771
5
reference_url https://access.redhat.com/errata/RHSA-2018:3772
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
1
value 6.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:3772
6
reference_url https://access.redhat.com/errata/RHSA-2018:3773
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
1
value 6.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:3773
7
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16859.json
reference_id
reference_type
scores
0
value 4.2
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16859.json
8
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-16859
reference_id
reference_type
scores
0
value 0.00096
scoring_system epss
scoring_elements 0.26657
published_at 2026-04-04T12:55:00Z
1
value 0.00096
scoring_system epss
scoring_elements 0.26442
published_at 2026-04-07T12:55:00Z
2
value 0.00096
scoring_system epss
scoring_elements 0.26402
published_at 2026-04-21T12:55:00Z
3
value 0.00096
scoring_system epss
scoring_elements 0.26562
published_at 2026-04-01T12:55:00Z
4
value 0.00096
scoring_system epss
scoring_elements 0.26612
published_at 2026-04-02T12:55:00Z
5
value 0.00096
scoring_system epss
scoring_elements 0.26512
published_at 2026-04-08T12:55:00Z
6
value 0.00096
scoring_system epss
scoring_elements 0.2656
published_at 2026-04-09T12:55:00Z
7
value 0.00096
scoring_system epss
scoring_elements 0.26567
published_at 2026-04-11T12:55:00Z
8
value 0.00096
scoring_system epss
scoring_elements 0.26521
published_at 2026-04-12T12:55:00Z
9
value 0.00096
scoring_system epss
scoring_elements 0.26464
published_at 2026-04-13T12:55:00Z
10
value 0.00096
scoring_system epss
scoring_elements 0.2647
published_at 2026-04-16T12:55:00Z
11
value 0.00096
scoring_system epss
scoring_elements 0.26441
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-16859
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16859
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
1
value 6.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16859
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16859
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16859
11
reference_url https://cwe.mitre.org/data/definitions/200.html
reference_id
reference_type
scores
url https://cwe.mitre.org/data/definitions/200.html
12
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.2
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
13
reference_url https://github.com/ansible/ansible
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
1
value 6.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible
14
reference_url https://github.com/ansible/ansible/blob/v2.5.13/changelogs/CHANGELOG-v2.5.rst
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
1
value 6.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/blob/v2.5.13/changelogs/CHANGELOG-v2.5.rst
15
reference_url https://github.com/ansible/ansible/commit/0d746b4198abf84290a093b83cf02b4203d73d9f
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
1
value 6.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/0d746b4198abf84290a093b83cf02b4203d73d9f
16
reference_url https://github.com/ansible/ansible/commit/2f8d3fcf41107efafc14d51ab6e14531ca8f8c87
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
1
value 6.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/2f8d3fcf41107efafc14d51ab6e14531ca8f8c87
17
reference_url https://github.com/ansible/ansible/commit/4d748d34f9392aa469da00a85c8e2d5fe6cec52b
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
1
value 6.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/4d748d34f9392aa469da00a85c8e2d5fe6cec52b
18
reference_url https://github.com/ansible/ansible/commit/8c1f701e6e9df29fe991f98265e2dd76acca4b8c
reference_id
reference_type
scores
url https://github.com/ansible/ansible/commit/8c1f701e6e9df29fe991f98265e2dd76acca4b8c
19
reference_url https://github.com/ansible/ansible/pull/49142
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
1
value 6.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/pull/49142
20
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2018-60.yaml
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
1
value 6.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2018-60.yaml
21
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-16859
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
1
value 6.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2018-16859
22
reference_url https://web.archive.org/web/20200227102121/http://www.securityfocus.com/bid/106004
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
1
value 6.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20200227102121/http://www.securityfocus.com/bid/106004
23
reference_url http://www.securityfocus.com/bid/106004
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/106004
24
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1649607
reference_id 1649607
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1649607
25
reference_url https://github.com/advisories/GHSA-v735-2pp6-h86r
reference_id GHSA-v735-2pp6-h86r
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-v735-2pp6-h86r
fixed_packages
0
url pkg:pypi/ansible@2.5.12
purl pkg:pypi/ansible@2.5.12
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-ae1r-yq1g-rkem
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b1pw-nusu-27c4
6
vulnerability VCID-b8zs-br97-57av
7
vulnerability VCID-c1xg-s3kx-gkft
8
vulnerability VCID-d4ka-dk4p-kfhb
9
vulnerability VCID-d7ez-s7qb-p3ay
10
vulnerability VCID-drt9-vx5r-akgm
11
vulnerability VCID-dzdx-wae5-8ydy
12
vulnerability VCID-e3z2-ydhb-gqfg
13
vulnerability VCID-ezaq-tqd3-4yd1
14
vulnerability VCID-fj2p-7wkh-1fhq
15
vulnerability VCID-geaa-6dxx-tbcw
16
vulnerability VCID-hqar-fca3-cbht
17
vulnerability VCID-jnmu-c8dt-5yb6
18
vulnerability VCID-js7k-ptm9-2yh1
19
vulnerability VCID-kb5h-116p-33b4
20
vulnerability VCID-puq1-z5h7-pkdg
21
vulnerability VCID-qbdk-hxhg-wbh4
22
vulnerability VCID-r6bb-p28b-8fcn
23
vulnerability VCID-rdwq-93d6-c7b4
24
vulnerability VCID-rg5d-st3d-nbah
25
vulnerability VCID-t6db-buke-nfhf
26
vulnerability VCID-tdp4-h4ht-pqhs
27
vulnerability VCID-ujbp-cc1r-wfe9
28
vulnerability VCID-v3h9-1t69-v7a3
29
vulnerability VCID-whyk-3ynn-zyf4
30
vulnerability VCID-x5e2-7whc-v3fc
31
vulnerability VCID-x94k-nxyd-27gs
32
vulnerability VCID-xw8r-fn6y-mbhp
33
vulnerability VCID-yeea-n94x-qqch
34
vulnerability VCID-ykxk-6mpc-wkgt
35
vulnerability VCID-yur3-am6j-w7ay
36
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.5.12
1
url pkg:pypi/ansible@2.5.13
purl pkg:pypi/ansible@2.5.13
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-ae1r-yq1g-rkem
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b1pw-nusu-27c4
6
vulnerability VCID-b8zs-br97-57av
7
vulnerability VCID-c1xg-s3kx-gkft
8
vulnerability VCID-d4ka-dk4p-kfhb
9
vulnerability VCID-d7ez-s7qb-p3ay
10
vulnerability VCID-drt9-vx5r-akgm
11
vulnerability VCID-dzdx-wae5-8ydy
12
vulnerability VCID-e3z2-ydhb-gqfg
13
vulnerability VCID-ezaq-tqd3-4yd1
14
vulnerability VCID-fj2p-7wkh-1fhq
15
vulnerability VCID-geaa-6dxx-tbcw
16
vulnerability VCID-hqar-fca3-cbht
17
vulnerability VCID-jnmu-c8dt-5yb6
18
vulnerability VCID-js7k-ptm9-2yh1
19
vulnerability VCID-kb5h-116p-33b4
20
vulnerability VCID-puq1-z5h7-pkdg
21
vulnerability VCID-qbdk-hxhg-wbh4
22
vulnerability VCID-rdwq-93d6-c7b4
23
vulnerability VCID-rg5d-st3d-nbah
24
vulnerability VCID-t6db-buke-nfhf
25
vulnerability VCID-tdp4-h4ht-pqhs
26
vulnerability VCID-ujbp-cc1r-wfe9
27
vulnerability VCID-v3h9-1t69-v7a3
28
vulnerability VCID-whyk-3ynn-zyf4
29
vulnerability VCID-x5e2-7whc-v3fc
30
vulnerability VCID-x94k-nxyd-27gs
31
vulnerability VCID-xw8r-fn6y-mbhp
32
vulnerability VCID-yeea-n94x-qqch
33
vulnerability VCID-ykxk-6mpc-wkgt
34
vulnerability VCID-yur3-am6j-w7ay
35
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.5.13
2
url pkg:pypi/ansible@2.6.9
purl pkg:pypi/ansible@2.6.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-ae1r-yq1g-rkem
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b1pw-nusu-27c4
6
vulnerability VCID-b8zs-br97-57av
7
vulnerability VCID-c1xg-s3kx-gkft
8
vulnerability VCID-ckt2-us5z-pyef
9
vulnerability VCID-d4ka-dk4p-kfhb
10
vulnerability VCID-d7ez-s7qb-p3ay
11
vulnerability VCID-drt9-vx5r-akgm
12
vulnerability VCID-dzdx-wae5-8ydy
13
vulnerability VCID-e3z2-ydhb-gqfg
14
vulnerability VCID-ezaq-tqd3-4yd1
15
vulnerability VCID-fj2p-7wkh-1fhq
16
vulnerability VCID-geaa-6dxx-tbcw
17
vulnerability VCID-hqar-fca3-cbht
18
vulnerability VCID-jnmu-c8dt-5yb6
19
vulnerability VCID-js7k-ptm9-2yh1
20
vulnerability VCID-kb5h-116p-33b4
21
vulnerability VCID-puq1-z5h7-pkdg
22
vulnerability VCID-qbdk-hxhg-wbh4
23
vulnerability VCID-r6bb-p28b-8fcn
24
vulnerability VCID-rdwq-93d6-c7b4
25
vulnerability VCID-rg5d-st3d-nbah
26
vulnerability VCID-swpr-3qae-d7fe
27
vulnerability VCID-t6db-buke-nfhf
28
vulnerability VCID-tdp4-h4ht-pqhs
29
vulnerability VCID-ujbp-cc1r-wfe9
30
vulnerability VCID-v3h9-1t69-v7a3
31
vulnerability VCID-whyk-3ynn-zyf4
32
vulnerability VCID-x5e2-7whc-v3fc
33
vulnerability VCID-x94k-nxyd-27gs
34
vulnerability VCID-xw8r-fn6y-mbhp
35
vulnerability VCID-yeea-n94x-qqch
36
vulnerability VCID-ykxk-6mpc-wkgt
37
vulnerability VCID-yur3-am6j-w7ay
38
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.6.9
3
url pkg:pypi/ansible@2.6.10
purl pkg:pypi/ansible@2.6.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-ae1r-yq1g-rkem
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b1pw-nusu-27c4
6
vulnerability VCID-b8zs-br97-57av
7
vulnerability VCID-c1xg-s3kx-gkft
8
vulnerability VCID-ckt2-us5z-pyef
9
vulnerability VCID-d4ka-dk4p-kfhb
10
vulnerability VCID-d7ez-s7qb-p3ay
11
vulnerability VCID-drt9-vx5r-akgm
12
vulnerability VCID-dzdx-wae5-8ydy
13
vulnerability VCID-e3z2-ydhb-gqfg
14
vulnerability VCID-ezaq-tqd3-4yd1
15
vulnerability VCID-fj2p-7wkh-1fhq
16
vulnerability VCID-geaa-6dxx-tbcw
17
vulnerability VCID-hqar-fca3-cbht
18
vulnerability VCID-jnmu-c8dt-5yb6
19
vulnerability VCID-js7k-ptm9-2yh1
20
vulnerability VCID-kb5h-116p-33b4
21
vulnerability VCID-puq1-z5h7-pkdg
22
vulnerability VCID-qbdk-hxhg-wbh4
23
vulnerability VCID-rdwq-93d6-c7b4
24
vulnerability VCID-rg5d-st3d-nbah
25
vulnerability VCID-swpr-3qae-d7fe
26
vulnerability VCID-t6db-buke-nfhf
27
vulnerability VCID-tdp4-h4ht-pqhs
28
vulnerability VCID-ujbp-cc1r-wfe9
29
vulnerability VCID-v3h9-1t69-v7a3
30
vulnerability VCID-whyk-3ynn-zyf4
31
vulnerability VCID-x5e2-7whc-v3fc
32
vulnerability VCID-x94k-nxyd-27gs
33
vulnerability VCID-xw8r-fn6y-mbhp
34
vulnerability VCID-yeea-n94x-qqch
35
vulnerability VCID-ykxk-6mpc-wkgt
36
vulnerability VCID-yur3-am6j-w7ay
37
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.6.10
4
url pkg:pypi/ansible@2.7.3
purl pkg:pypi/ansible@2.7.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-a49n-tvnt-p3df
3
vulnerability VCID-ae1r-yq1g-rkem
4
vulnerability VCID-atun-stks-4kcb
5
vulnerability VCID-axc3-wcsk-q3eg
6
vulnerability VCID-b1pw-nusu-27c4
7
vulnerability VCID-b8zs-br97-57av
8
vulnerability VCID-c1xg-s3kx-gkft
9
vulnerability VCID-ckt2-us5z-pyef
10
vulnerability VCID-d4ka-dk4p-kfhb
11
vulnerability VCID-d7ez-s7qb-p3ay
12
vulnerability VCID-dagf-buer-4ffr
13
vulnerability VCID-drt9-vx5r-akgm
14
vulnerability VCID-dzdx-wae5-8ydy
15
vulnerability VCID-e3z2-ydhb-gqfg
16
vulnerability VCID-ezaq-tqd3-4yd1
17
vulnerability VCID-ezux-6buh-h7h7
18
vulnerability VCID-fj2p-7wkh-1fhq
19
vulnerability VCID-geaa-6dxx-tbcw
20
vulnerability VCID-h1n3-cmte-eugf
21
vulnerability VCID-hqar-fca3-cbht
22
vulnerability VCID-jnmu-c8dt-5yb6
23
vulnerability VCID-js7k-ptm9-2yh1
24
vulnerability VCID-kb5h-116p-33b4
25
vulnerability VCID-puq1-z5h7-pkdg
26
vulnerability VCID-qbdk-hxhg-wbh4
27
vulnerability VCID-r6bb-p28b-8fcn
28
vulnerability VCID-rdwq-93d6-c7b4
29
vulnerability VCID-rg5d-st3d-nbah
30
vulnerability VCID-swpr-3qae-d7fe
31
vulnerability VCID-t6db-buke-nfhf
32
vulnerability VCID-tdp4-h4ht-pqhs
33
vulnerability VCID-uhg5-zpzt-e3gz
34
vulnerability VCID-ujbp-cc1r-wfe9
35
vulnerability VCID-v3h9-1t69-v7a3
36
vulnerability VCID-whyk-3ynn-zyf4
37
vulnerability VCID-x5e2-7whc-v3fc
38
vulnerability VCID-x94k-nxyd-27gs
39
vulnerability VCID-xg2f-12w4-yqge
40
vulnerability VCID-xw8r-fn6y-mbhp
41
vulnerability VCID-yeea-n94x-qqch
42
vulnerability VCID-ykxk-6mpc-wkgt
43
vulnerability VCID-yur3-am6j-w7ay
44
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.3
5
url pkg:pypi/ansible@2.7.4
purl pkg:pypi/ansible@2.7.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-a49n-tvnt-p3df
3
vulnerability VCID-ae1r-yq1g-rkem
4
vulnerability VCID-atun-stks-4kcb
5
vulnerability VCID-axc3-wcsk-q3eg
6
vulnerability VCID-b1pw-nusu-27c4
7
vulnerability VCID-b8zs-br97-57av
8
vulnerability VCID-c1xg-s3kx-gkft
9
vulnerability VCID-ckt2-us5z-pyef
10
vulnerability VCID-d4ka-dk4p-kfhb
11
vulnerability VCID-d7ez-s7qb-p3ay
12
vulnerability VCID-dagf-buer-4ffr
13
vulnerability VCID-drt9-vx5r-akgm
14
vulnerability VCID-dzdx-wae5-8ydy
15
vulnerability VCID-e3z2-ydhb-gqfg
16
vulnerability VCID-ezaq-tqd3-4yd1
17
vulnerability VCID-ezux-6buh-h7h7
18
vulnerability VCID-fj2p-7wkh-1fhq
19
vulnerability VCID-geaa-6dxx-tbcw
20
vulnerability VCID-h1n3-cmte-eugf
21
vulnerability VCID-hqar-fca3-cbht
22
vulnerability VCID-jnmu-c8dt-5yb6
23
vulnerability VCID-js7k-ptm9-2yh1
24
vulnerability VCID-kb5h-116p-33b4
25
vulnerability VCID-puq1-z5h7-pkdg
26
vulnerability VCID-qbdk-hxhg-wbh4
27
vulnerability VCID-rdwq-93d6-c7b4
28
vulnerability VCID-rg5d-st3d-nbah
29
vulnerability VCID-swpr-3qae-d7fe
30
vulnerability VCID-t6db-buke-nfhf
31
vulnerability VCID-tdp4-h4ht-pqhs
32
vulnerability VCID-uhg5-zpzt-e3gz
33
vulnerability VCID-ujbp-cc1r-wfe9
34
vulnerability VCID-v3h9-1t69-v7a3
35
vulnerability VCID-whyk-3ynn-zyf4
36
vulnerability VCID-x5e2-7whc-v3fc
37
vulnerability VCID-x94k-nxyd-27gs
38
vulnerability VCID-xg2f-12w4-yqge
39
vulnerability VCID-xw8r-fn6y-mbhp
40
vulnerability VCID-yeea-n94x-qqch
41
vulnerability VCID-ykxk-6mpc-wkgt
42
vulnerability VCID-yur3-am6j-w7ay
43
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.4
6
url pkg:pypi/ansible@2.8.1
purl pkg:pypi/ansible@2.8.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-7uu9-tj6b-quf6
3
vulnerability VCID-a49n-tvnt-p3df
4
vulnerability VCID-ae1r-yq1g-rkem
5
vulnerability VCID-atun-stks-4kcb
6
vulnerability VCID-axc3-wcsk-q3eg
7
vulnerability VCID-b8zs-br97-57av
8
vulnerability VCID-c1xg-s3kx-gkft
9
vulnerability VCID-ckt2-us5z-pyef
10
vulnerability VCID-d4ka-dk4p-kfhb
11
vulnerability VCID-d7ez-s7qb-p3ay
12
vulnerability VCID-dagf-buer-4ffr
13
vulnerability VCID-dzdx-wae5-8ydy
14
vulnerability VCID-e3z2-ydhb-gqfg
15
vulnerability VCID-ezaq-tqd3-4yd1
16
vulnerability VCID-ezux-6buh-h7h7
17
vulnerability VCID-fj2p-7wkh-1fhq
18
vulnerability VCID-geaa-6dxx-tbcw
19
vulnerability VCID-h1n3-cmte-eugf
20
vulnerability VCID-hqar-fca3-cbht
21
vulnerability VCID-jnmu-c8dt-5yb6
22
vulnerability VCID-jrxz-b168-7ug4
23
vulnerability VCID-js7k-ptm9-2yh1
24
vulnerability VCID-kb5h-116p-33b4
25
vulnerability VCID-nukv-kkws-xkb1
26
vulnerability VCID-qbdk-hxhg-wbh4
27
vulnerability VCID-rdwq-93d6-c7b4
28
vulnerability VCID-rg5d-st3d-nbah
29
vulnerability VCID-swpr-3qae-d7fe
30
vulnerability VCID-t6db-buke-nfhf
31
vulnerability VCID-tdp4-h4ht-pqhs
32
vulnerability VCID-uhg5-zpzt-e3gz
33
vulnerability VCID-ujbp-cc1r-wfe9
34
vulnerability VCID-v3h9-1t69-v7a3
35
vulnerability VCID-whyk-3ynn-zyf4
36
vulnerability VCID-x5e2-7whc-v3fc
37
vulnerability VCID-x94k-nxyd-27gs
38
vulnerability VCID-xg2f-12w4-yqge
39
vulnerability VCID-xw8r-fn6y-mbhp
40
vulnerability VCID-yeea-n94x-qqch
41
vulnerability VCID-ykxk-6mpc-wkgt
42
vulnerability VCID-yur3-am6j-w7ay
43
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.1
aliases CVE-2018-16859, GHSA-v735-2pp6-h86r, PYSEC-2018-60
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-r6bb-p28b-8fcn
11
url VCID-rknj-nkgs-wyg2
vulnerability_id VCID-rknj-nkgs-wyg2
summary Ansible "User" module leaks any data which is passed on as a parameter to ssh-keygen. This could lean in undesirable situations such as passphrases credentials passed as a parameter for the ssh-keygen executable. Showing those credentials in clear text form for every user which have access just to the process list.
references
0
reference_url http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00021.html
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00021.html
1
reference_url http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00077.html
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00077.html
2
reference_url http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00020.html
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00020.html
3
reference_url https://access.redhat.com/errata/RHSA-2018:3460
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:3460
4
reference_url https://access.redhat.com/errata/RHSA-2018:3461
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:3461
5
reference_url https://access.redhat.com/errata/RHSA-2018:3462
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:3462
6
reference_url https://access.redhat.com/errata/RHSA-2018:3463
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:3463
7
reference_url https://access.redhat.com/errata/RHSA-2018:3505
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:3505
8
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16837.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16837.json
9
reference_url https://access.redhat.com/security/cve/cve-2018-16837
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/security/cve/cve-2018-16837
10
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-16837
reference_id
reference_type
scores
0
value 0.0004
scoring_system epss
scoring_elements 0.1223
published_at 2026-04-07T12:55:00Z
1
value 0.0004
scoring_system epss
scoring_elements 0.12309
published_at 2026-04-08T12:55:00Z
2
value 0.0004
scoring_system epss
scoring_elements 0.1236
published_at 2026-04-09T12:55:00Z
3
value 0.0004
scoring_system epss
scoring_elements 0.12367
published_at 2026-04-11T12:55:00Z
4
value 0.0004
scoring_system epss
scoring_elements 0.12329
published_at 2026-04-12T12:55:00Z
5
value 0.0004
scoring_system epss
scoring_elements 0.12291
published_at 2026-04-13T12:55:00Z
6
value 0.0004
scoring_system epss
scoring_elements 0.12189
published_at 2026-04-16T12:55:00Z
7
value 0.0004
scoring_system epss
scoring_elements 0.12191
published_at 2026-04-18T12:55:00Z
8
value 0.0004
scoring_system epss
scoring_elements 0.1227
published_at 2026-04-01T12:55:00Z
9
value 0.0004
scoring_system epss
scoring_elements 0.12385
published_at 2026-04-02T12:55:00Z
10
value 0.0004
scoring_system epss
scoring_elements 0.12429
published_at 2026-04-04T12:55:00Z
11
value 0.00049
scoring_system epss
scoring_elements 0.14935
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-16837
11
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16837
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16837
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10855
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10855
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10875
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10875
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16837
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16837
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16876
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16876
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3828
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3828
17
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
18
reference_url https://github.com/ansible/ansible
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible
19
reference_url https://github.com/ansible/ansible/blob/c963ef1dfbf73efea5106624eb48b346f01eaefd/changelogs/CHANGELOG-v2.7.rst?plain=1#L138
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/blob/c963ef1dfbf73efea5106624eb48b346f01eaefd/changelogs/CHANGELOG-v2.7.rst?plain=1#L138
20
reference_url https://github.com/ansible/ansible/blob/stable-2.5/changelogs/CHANGELOG-v2.5.rst#v2511
reference_id
reference_type
scores
url https://github.com/ansible/ansible/blob/stable-2.5/changelogs/CHANGELOG-v2.5.rst#v2511
21
reference_url https://github.com/ansible/ansible/blob/stable-2.6/changelogs/CHANGELOG-v2.6.rst#v267
reference_id
reference_type
scores
url https://github.com/ansible/ansible/blob/stable-2.6/changelogs/CHANGELOG-v2.6.rst#v267
22
reference_url https://github.com/ansible/ansible/blob/stable-2.7/changelogs/CHANGELOG-v2.7.rst#v2-7-1
reference_id
reference_type
scores
url https://github.com/ansible/ansible/blob/stable-2.7/changelogs/CHANGELOG-v2.7.rst#v2-7-1
23
reference_url https://github.com/ansible/ansible/commit/77928e6c3a2ad878b20312ce5d74d9d7741e0df0
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/77928e6c3a2ad878b20312ce5d74d9d7741e0df0
24
reference_url https://github.com/ansible/ansible/commit/a0aa53d1a1d6075a7ae98ace138712ee6cb45ae4
reference_id
reference_type
scores
url https://github.com/ansible/ansible/commit/a0aa53d1a1d6075a7ae98ace138712ee6cb45ae4
25
reference_url https://github.com/ansible/ansible/commit/b618339c321c387230d3ea523e80ad47af3de5cf
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/b618339c321c387230d3ea523e80ad47af3de5cf
26
reference_url https://github.com/ansible/ansible/commit/f50cc0b8cb399bb7b7c1ad23b94c9404f0cc6d23
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/f50cc0b8cb399bb7b7c1ad23b94c9404f0cc6d23
27
reference_url https://github.com/ansible/ansible/pull/47436
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/pull/47436
28
reference_url https://github.com/ansible/ansible/pull/47445
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/pull/47445
29
reference_url https://github.com/ansible/ansible/pull/47486
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/pull/47486
30
reference_url https://github.com/ansible/ansible/pull/47487
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/pull/47487
31
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2018-44.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2018-44.yaml
32
reference_url https://lists.debian.org/debian-lts-announce/2018/11/msg00012.html
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2018/11/msg00012.html
33
reference_url https://usn.ubuntu.com/4072-1
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://usn.ubuntu.com/4072-1
34
reference_url https://usn.ubuntu.com/4072-1/
reference_id
reference_type
scores
url https://usn.ubuntu.com/4072-1/
35
reference_url https://web.archive.org/web/20200227105539/http://www.securityfocus.com/bid/105700
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20200227105539/http://www.securityfocus.com/bid/105700
36
reference_url https://www.debian.org/security/2019/dsa-4396
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.debian.org/security/2019/dsa-4396
37
reference_url http://www.securityfocus.com/bid/105700
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/105700
38
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1640642
reference_id 1640642
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1640642
39
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=912297
reference_id 912297
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=912297
40
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-16837
reference_id CVE-2018-16837
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2018-16837
41
reference_url https://github.com/advisories/GHSA-hwrm-63v2-42g4
reference_id GHSA-hwrm-63v2-42g4
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-hwrm-63v2-42g4
fixed_packages
0
url pkg:pypi/ansible@2.0.0.1
purl pkg:pypi/ansible@2.0.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-ae1r-yq1g-rkem
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b8zs-br97-57av
6
vulnerability VCID-c1xg-s3kx-gkft
7
vulnerability VCID-d4ka-dk4p-kfhb
8
vulnerability VCID-d7ez-s7qb-p3ay
9
vulnerability VCID-drt9-vx5r-akgm
10
vulnerability VCID-e3z2-ydhb-gqfg
11
vulnerability VCID-ezaq-tqd3-4yd1
12
vulnerability VCID-fetz-42jf-nqe8
13
vulnerability VCID-fj2p-7wkh-1fhq
14
vulnerability VCID-geaa-6dxx-tbcw
15
vulnerability VCID-hfxe-jjf5-nqd1
16
vulnerability VCID-hqar-fca3-cbht
17
vulnerability VCID-jhxm-379u-subt
18
vulnerability VCID-jnmu-c8dt-5yb6
19
vulnerability VCID-js7k-ptm9-2yh1
20
vulnerability VCID-kb5h-116p-33b4
21
vulnerability VCID-puq1-z5h7-pkdg
22
vulnerability VCID-q4q1-aueh-sub2
23
vulnerability VCID-qbdk-hxhg-wbh4
24
vulnerability VCID-r6bb-p28b-8fcn
25
vulnerability VCID-rdwq-93d6-c7b4
26
vulnerability VCID-rg5d-st3d-nbah
27
vulnerability VCID-rknj-nkgs-wyg2
28
vulnerability VCID-s1r4-29kw-5kbg
29
vulnerability VCID-t6db-buke-nfhf
30
vulnerability VCID-tdp4-h4ht-pqhs
31
vulnerability VCID-ujbp-cc1r-wfe9
32
vulnerability VCID-v3h9-1t69-v7a3
33
vulnerability VCID-whyk-3ynn-zyf4
34
vulnerability VCID-wqm7-2ajr-6ue8
35
vulnerability VCID-x5e2-7whc-v3fc
36
vulnerability VCID-x94k-nxyd-27gs
37
vulnerability VCID-xw8r-fn6y-mbhp
38
vulnerability VCID-yc8n-wxb4-1uaz
39
vulnerability VCID-yeea-n94x-qqch
40
vulnerability VCID-ykxk-6mpc-wkgt
41
vulnerability VCID-yur3-am6j-w7ay
42
vulnerability VCID-zmr4-652z-r3dm
43
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.0.0.1
1
url pkg:pypi/ansible@2.5.11
purl pkg:pypi/ansible@2.5.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-ae1r-yq1g-rkem
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b1pw-nusu-27c4
6
vulnerability VCID-b8zs-br97-57av
7
vulnerability VCID-c1xg-s3kx-gkft
8
vulnerability VCID-d4ka-dk4p-kfhb
9
vulnerability VCID-d7ez-s7qb-p3ay
10
vulnerability VCID-drt9-vx5r-akgm
11
vulnerability VCID-dzdx-wae5-8ydy
12
vulnerability VCID-e3z2-ydhb-gqfg
13
vulnerability VCID-ezaq-tqd3-4yd1
14
vulnerability VCID-fj2p-7wkh-1fhq
15
vulnerability VCID-geaa-6dxx-tbcw
16
vulnerability VCID-hqar-fca3-cbht
17
vulnerability VCID-jnmu-c8dt-5yb6
18
vulnerability VCID-js7k-ptm9-2yh1
19
vulnerability VCID-kb5h-116p-33b4
20
vulnerability VCID-puq1-z5h7-pkdg
21
vulnerability VCID-qbdk-hxhg-wbh4
22
vulnerability VCID-r6bb-p28b-8fcn
23
vulnerability VCID-rdwq-93d6-c7b4
24
vulnerability VCID-rg5d-st3d-nbah
25
vulnerability VCID-t6db-buke-nfhf
26
vulnerability VCID-tdp4-h4ht-pqhs
27
vulnerability VCID-ujbp-cc1r-wfe9
28
vulnerability VCID-v3h9-1t69-v7a3
29
vulnerability VCID-whyk-3ynn-zyf4
30
vulnerability VCID-x5e2-7whc-v3fc
31
vulnerability VCID-x94k-nxyd-27gs
32
vulnerability VCID-xw8r-fn6y-mbhp
33
vulnerability VCID-yeea-n94x-qqch
34
vulnerability VCID-ykxk-6mpc-wkgt
35
vulnerability VCID-yur3-am6j-w7ay
36
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.5.11
2
url pkg:pypi/ansible@2.6.7
purl pkg:pypi/ansible@2.6.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-ae1r-yq1g-rkem
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b1pw-nusu-27c4
6
vulnerability VCID-b8zs-br97-57av
7
vulnerability VCID-c1xg-s3kx-gkft
8
vulnerability VCID-ckt2-us5z-pyef
9
vulnerability VCID-d4ka-dk4p-kfhb
10
vulnerability VCID-d7ez-s7qb-p3ay
11
vulnerability VCID-drt9-vx5r-akgm
12
vulnerability VCID-dzdx-wae5-8ydy
13
vulnerability VCID-e3z2-ydhb-gqfg
14
vulnerability VCID-ezaq-tqd3-4yd1
15
vulnerability VCID-fj2p-7wkh-1fhq
16
vulnerability VCID-geaa-6dxx-tbcw
17
vulnerability VCID-hqar-fca3-cbht
18
vulnerability VCID-jnmu-c8dt-5yb6
19
vulnerability VCID-js7k-ptm9-2yh1
20
vulnerability VCID-kb5h-116p-33b4
21
vulnerability VCID-puq1-z5h7-pkdg
22
vulnerability VCID-qbdk-hxhg-wbh4
23
vulnerability VCID-r6bb-p28b-8fcn
24
vulnerability VCID-rdwq-93d6-c7b4
25
vulnerability VCID-rg5d-st3d-nbah
26
vulnerability VCID-swpr-3qae-d7fe
27
vulnerability VCID-t6db-buke-nfhf
28
vulnerability VCID-tdp4-h4ht-pqhs
29
vulnerability VCID-ujbp-cc1r-wfe9
30
vulnerability VCID-v3h9-1t69-v7a3
31
vulnerability VCID-whyk-3ynn-zyf4
32
vulnerability VCID-x5e2-7whc-v3fc
33
vulnerability VCID-x94k-nxyd-27gs
34
vulnerability VCID-xw8r-fn6y-mbhp
35
vulnerability VCID-yeea-n94x-qqch
36
vulnerability VCID-ykxk-6mpc-wkgt
37
vulnerability VCID-yur3-am6j-w7ay
38
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.6.7
3
url pkg:pypi/ansible@2.7.1
purl pkg:pypi/ansible@2.7.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-a49n-tvnt-p3df
3
vulnerability VCID-ae1r-yq1g-rkem
4
vulnerability VCID-atun-stks-4kcb
5
vulnerability VCID-axc3-wcsk-q3eg
6
vulnerability VCID-b1pw-nusu-27c4
7
vulnerability VCID-b8zs-br97-57av
8
vulnerability VCID-c1xg-s3kx-gkft
9
vulnerability VCID-ckt2-us5z-pyef
10
vulnerability VCID-d4ka-dk4p-kfhb
11
vulnerability VCID-d7ez-s7qb-p3ay
12
vulnerability VCID-dagf-buer-4ffr
13
vulnerability VCID-drt9-vx5r-akgm
14
vulnerability VCID-dzdx-wae5-8ydy
15
vulnerability VCID-e3z2-ydhb-gqfg
16
vulnerability VCID-ezaq-tqd3-4yd1
17
vulnerability VCID-ezux-6buh-h7h7
18
vulnerability VCID-fj2p-7wkh-1fhq
19
vulnerability VCID-geaa-6dxx-tbcw
20
vulnerability VCID-h1n3-cmte-eugf
21
vulnerability VCID-hqar-fca3-cbht
22
vulnerability VCID-jnmu-c8dt-5yb6
23
vulnerability VCID-js7k-ptm9-2yh1
24
vulnerability VCID-kb5h-116p-33b4
25
vulnerability VCID-puq1-z5h7-pkdg
26
vulnerability VCID-qbdk-hxhg-wbh4
27
vulnerability VCID-r6bb-p28b-8fcn
28
vulnerability VCID-rdwq-93d6-c7b4
29
vulnerability VCID-rg5d-st3d-nbah
30
vulnerability VCID-swpr-3qae-d7fe
31
vulnerability VCID-t6db-buke-nfhf
32
vulnerability VCID-tdp4-h4ht-pqhs
33
vulnerability VCID-uhg5-zpzt-e3gz
34
vulnerability VCID-ujbp-cc1r-wfe9
35
vulnerability VCID-v3h9-1t69-v7a3
36
vulnerability VCID-whyk-3ynn-zyf4
37
vulnerability VCID-x5e2-7whc-v3fc
38
vulnerability VCID-x94k-nxyd-27gs
39
vulnerability VCID-xg2f-12w4-yqge
40
vulnerability VCID-xw8r-fn6y-mbhp
41
vulnerability VCID-yeea-n94x-qqch
42
vulnerability VCID-ykxk-6mpc-wkgt
43
vulnerability VCID-yur3-am6j-w7ay
44
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.1
aliases CVE-2018-16837, GHSA-hwrm-63v2-42g4, PYSEC-2018-44
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rknj-nkgs-wyg2
12
url VCID-wqm7-2ajr-6ue8
vulnerability_id VCID-wqm7-2ajr-6ue8
summary In ansible it was found that inventory variables are loaded from current working directory when running ad-hoc command which are under attacker's control, allowing to run arbitrary code as a result.
references
0
reference_url https://access.redhat.com/errata/RHBA-2018:3788
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHBA-2018:3788
1
reference_url https://access.redhat.com/errata/RHSA-2018:2150
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:2150
2
reference_url https://access.redhat.com/errata/RHSA-2018:2151
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:2151
3
reference_url https://access.redhat.com/errata/RHSA-2018:2152
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:2152
4
reference_url https://access.redhat.com/errata/RHSA-2018:2166
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:2166
5
reference_url https://access.redhat.com/errata/RHSA-2018:2321
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:2321
6
reference_url https://access.redhat.com/errata/RHSA-2018:2585
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:2585
7
reference_url https://access.redhat.com/errata/RHSA-2019:0054
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2019:0054
8
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10874.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10874.json
9
reference_url https://access.redhat.com/security/cve/CVE-2018-10874
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/security/cve/CVE-2018-10874
10
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-10874
reference_id
reference_type
scores
0
value 0.00047
scoring_system epss
scoring_elements 0.14546
published_at 2026-04-04T12:55:00Z
1
value 0.00047
scoring_system epss
scoring_elements 0.14476
published_at 2026-04-02T12:55:00Z
2
value 0.00047
scoring_system epss
scoring_elements 0.14406
published_at 2026-04-01T12:55:00Z
3
value 0.00047
scoring_system epss
scoring_elements 0.14312
published_at 2026-04-21T12:55:00Z
4
value 0.00047
scoring_system epss
scoring_elements 0.14437
published_at 2026-04-08T12:55:00Z
5
value 0.00047
scoring_system epss
scoring_elements 0.14492
published_at 2026-04-09T12:55:00Z
6
value 0.00047
scoring_system epss
scoring_elements 0.14441
published_at 2026-04-11T12:55:00Z
7
value 0.00047
scoring_system epss
scoring_elements 0.14404
published_at 2026-04-12T12:55:00Z
8
value 0.00047
scoring_system epss
scoring_elements 0.14348
published_at 2026-04-13T12:55:00Z
9
value 0.00047
scoring_system epss
scoring_elements 0.14239
published_at 2026-04-16T12:55:00Z
10
value 0.00047
scoring_system epss
scoring_elements 0.1424
published_at 2026-04-18T12:55:00Z
11
value 0.00047
scoring_system epss
scoring_elements 0.14354
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-10874
11
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1596528
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=1596528
12
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10874
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10874
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10874
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10874
14
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
15
reference_url https://github.com/ansible/ansible
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible
16
reference_url https://github.com/ansible/ansible/commit/10d6fe6c98cfee9a7be0fea6102ba5dec951aec7
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/10d6fe6c98cfee9a7be0fea6102ba5dec951aec7
17
reference_url https://github.com/ansible/ansible/commit/1f80949f964a946773f9d3ac1899535bd2cc2b8e
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/1f80949f964a946773f9d3ac1899535bd2cc2b8e
18
reference_url https://github.com/ansible/ansible/commit/44874addc7ea136f83c67d5869047ece02645fdb
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/44874addc7ea136f83c67d5869047ece02645fdb
19
reference_url https://github.com/ansible/ansible/pull/42067
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/pull/42067
20
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2018-81.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2018-81.yaml
21
reference_url https://usn.ubuntu.com/4072-1
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://usn.ubuntu.com/4072-1
22
reference_url https://usn.ubuntu.com/4072-1/
reference_id
reference_type
scores
url https://usn.ubuntu.com/4072-1/
23
reference_url https://web.archive.org/web/20201130165946/http://www.securitytracker.com/id/1041396
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20201130165946/http://www.securitytracker.com/id/1041396
24
reference_url http://www.securitytracker.com/id/1041396
reference_id
reference_type
scores
url http://www.securitytracker.com/id/1041396
25
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:ansible_engine:2.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.0:*:*:*:*:*:*:*
26
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.4:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:ansible_engine:2.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.4:*:*:*:*:*:*:*
27
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.5:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:ansible_engine:2.5:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.5:*:*:*:*:*:*:*
28
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.6:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:ansible_engine:2.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.6:*:*:*:*:*:*:*
29
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*
30
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:12:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:openstack:12:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:12:*:*:*:*:*:*:*
31
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*
32
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*
33
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization_host:4.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:virtualization_host:4.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization_host:4.0:*:*:*:*:*:*:*
34
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-10874
reference_id CVE-2018-10874
reference_type
scores
0
value 4.6
scoring_system cvssv2
scoring_elements AV:L/AC:L/Au:N/C:P/I:P/A:P
1
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
2
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
3
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
4
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2018-10874
35
reference_url https://github.com/advisories/GHSA-3xvg-x47j-x75w
reference_id GHSA-3xvg-x47j-x75w
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-3xvg-x47j-x75w
fixed_packages
0
url pkg:pypi/ansible@2.0.0.1
purl pkg:pypi/ansible@2.0.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-ae1r-yq1g-rkem
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b8zs-br97-57av
6
vulnerability VCID-c1xg-s3kx-gkft
7
vulnerability VCID-d4ka-dk4p-kfhb
8
vulnerability VCID-d7ez-s7qb-p3ay
9
vulnerability VCID-drt9-vx5r-akgm
10
vulnerability VCID-e3z2-ydhb-gqfg
11
vulnerability VCID-ezaq-tqd3-4yd1
12
vulnerability VCID-fetz-42jf-nqe8
13
vulnerability VCID-fj2p-7wkh-1fhq
14
vulnerability VCID-geaa-6dxx-tbcw
15
vulnerability VCID-hfxe-jjf5-nqd1
16
vulnerability VCID-hqar-fca3-cbht
17
vulnerability VCID-jhxm-379u-subt
18
vulnerability VCID-jnmu-c8dt-5yb6
19
vulnerability VCID-js7k-ptm9-2yh1
20
vulnerability VCID-kb5h-116p-33b4
21
vulnerability VCID-puq1-z5h7-pkdg
22
vulnerability VCID-q4q1-aueh-sub2
23
vulnerability VCID-qbdk-hxhg-wbh4
24
vulnerability VCID-r6bb-p28b-8fcn
25
vulnerability VCID-rdwq-93d6-c7b4
26
vulnerability VCID-rg5d-st3d-nbah
27
vulnerability VCID-rknj-nkgs-wyg2
28
vulnerability VCID-s1r4-29kw-5kbg
29
vulnerability VCID-t6db-buke-nfhf
30
vulnerability VCID-tdp4-h4ht-pqhs
31
vulnerability VCID-ujbp-cc1r-wfe9
32
vulnerability VCID-v3h9-1t69-v7a3
33
vulnerability VCID-whyk-3ynn-zyf4
34
vulnerability VCID-wqm7-2ajr-6ue8
35
vulnerability VCID-x5e2-7whc-v3fc
36
vulnerability VCID-x94k-nxyd-27gs
37
vulnerability VCID-xw8r-fn6y-mbhp
38
vulnerability VCID-yc8n-wxb4-1uaz
39
vulnerability VCID-yeea-n94x-qqch
40
vulnerability VCID-ykxk-6mpc-wkgt
41
vulnerability VCID-yur3-am6j-w7ay
42
vulnerability VCID-zmr4-652z-r3dm
43
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.0.0.1
1
url pkg:pypi/ansible@2.4.6.0
purl pkg:pypi/ansible@2.4.6.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-ae1r-yq1g-rkem
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b8zs-br97-57av
6
vulnerability VCID-c1xg-s3kx-gkft
7
vulnerability VCID-d4ka-dk4p-kfhb
8
vulnerability VCID-d7ez-s7qb-p3ay
9
vulnerability VCID-drt9-vx5r-akgm
10
vulnerability VCID-e3z2-ydhb-gqfg
11
vulnerability VCID-ezaq-tqd3-4yd1
12
vulnerability VCID-fj2p-7wkh-1fhq
13
vulnerability VCID-geaa-6dxx-tbcw
14
vulnerability VCID-hqar-fca3-cbht
15
vulnerability VCID-jnmu-c8dt-5yb6
16
vulnerability VCID-js7k-ptm9-2yh1
17
vulnerability VCID-kb5h-116p-33b4
18
vulnerability VCID-puq1-z5h7-pkdg
19
vulnerability VCID-qbdk-hxhg-wbh4
20
vulnerability VCID-r6bb-p28b-8fcn
21
vulnerability VCID-rdwq-93d6-c7b4
22
vulnerability VCID-rg5d-st3d-nbah
23
vulnerability VCID-rknj-nkgs-wyg2
24
vulnerability VCID-t6db-buke-nfhf
25
vulnerability VCID-tdp4-h4ht-pqhs
26
vulnerability VCID-ujbp-cc1r-wfe9
27
vulnerability VCID-v3h9-1t69-v7a3
28
vulnerability VCID-whyk-3ynn-zyf4
29
vulnerability VCID-x5e2-7whc-v3fc
30
vulnerability VCID-x94k-nxyd-27gs
31
vulnerability VCID-xw8r-fn6y-mbhp
32
vulnerability VCID-y91x-2rch-pkar
33
vulnerability VCID-yeea-n94x-qqch
34
vulnerability VCID-ykxk-6mpc-wkgt
35
vulnerability VCID-yur3-am6j-w7ay
36
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.4.6.0
2
url pkg:pypi/ansible@2.5.6
purl pkg:pypi/ansible@2.5.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-ae1r-yq1g-rkem
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b1pw-nusu-27c4
6
vulnerability VCID-b8zs-br97-57av
7
vulnerability VCID-c1xg-s3kx-gkft
8
vulnerability VCID-d4ka-dk4p-kfhb
9
vulnerability VCID-d7ez-s7qb-p3ay
10
vulnerability VCID-drt9-vx5r-akgm
11
vulnerability VCID-dzdx-wae5-8ydy
12
vulnerability VCID-e3z2-ydhb-gqfg
13
vulnerability VCID-ezaq-tqd3-4yd1
14
vulnerability VCID-fj2p-7wkh-1fhq
15
vulnerability VCID-geaa-6dxx-tbcw
16
vulnerability VCID-hqar-fca3-cbht
17
vulnerability VCID-jnmu-c8dt-5yb6
18
vulnerability VCID-js7k-ptm9-2yh1
19
vulnerability VCID-kb5h-116p-33b4
20
vulnerability VCID-puq1-z5h7-pkdg
21
vulnerability VCID-qbdk-hxhg-wbh4
22
vulnerability VCID-r6bb-p28b-8fcn
23
vulnerability VCID-rdwq-93d6-c7b4
24
vulnerability VCID-rg5d-st3d-nbah
25
vulnerability VCID-rknj-nkgs-wyg2
26
vulnerability VCID-t6db-buke-nfhf
27
vulnerability VCID-tdp4-h4ht-pqhs
28
vulnerability VCID-ujbp-cc1r-wfe9
29
vulnerability VCID-v3h9-1t69-v7a3
30
vulnerability VCID-whyk-3ynn-zyf4
31
vulnerability VCID-x5e2-7whc-v3fc
32
vulnerability VCID-x94k-nxyd-27gs
33
vulnerability VCID-xw8r-fn6y-mbhp
34
vulnerability VCID-y91x-2rch-pkar
35
vulnerability VCID-yeea-n94x-qqch
36
vulnerability VCID-ykxk-6mpc-wkgt
37
vulnerability VCID-yur3-am6j-w7ay
38
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.5.6
3
url pkg:pypi/ansible@2.6.1
purl pkg:pypi/ansible@2.6.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-ae1r-yq1g-rkem
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b1pw-nusu-27c4
6
vulnerability VCID-b8zs-br97-57av
7
vulnerability VCID-c1xg-s3kx-gkft
8
vulnerability VCID-ckt2-us5z-pyef
9
vulnerability VCID-d4ka-dk4p-kfhb
10
vulnerability VCID-d7ez-s7qb-p3ay
11
vulnerability VCID-drt9-vx5r-akgm
12
vulnerability VCID-dzdx-wae5-8ydy
13
vulnerability VCID-e3z2-ydhb-gqfg
14
vulnerability VCID-ezaq-tqd3-4yd1
15
vulnerability VCID-fj2p-7wkh-1fhq
16
vulnerability VCID-geaa-6dxx-tbcw
17
vulnerability VCID-hqar-fca3-cbht
18
vulnerability VCID-jnmu-c8dt-5yb6
19
vulnerability VCID-js7k-ptm9-2yh1
20
vulnerability VCID-kb5h-116p-33b4
21
vulnerability VCID-puq1-z5h7-pkdg
22
vulnerability VCID-qbdk-hxhg-wbh4
23
vulnerability VCID-r6bb-p28b-8fcn
24
vulnerability VCID-rdwq-93d6-c7b4
25
vulnerability VCID-rg5d-st3d-nbah
26
vulnerability VCID-rknj-nkgs-wyg2
27
vulnerability VCID-swpr-3qae-d7fe
28
vulnerability VCID-t6db-buke-nfhf
29
vulnerability VCID-tdp4-h4ht-pqhs
30
vulnerability VCID-ujbp-cc1r-wfe9
31
vulnerability VCID-v3h9-1t69-v7a3
32
vulnerability VCID-whyk-3ynn-zyf4
33
vulnerability VCID-x5e2-7whc-v3fc
34
vulnerability VCID-x94k-nxyd-27gs
35
vulnerability VCID-xw8r-fn6y-mbhp
36
vulnerability VCID-yeea-n94x-qqch
37
vulnerability VCID-ykxk-6mpc-wkgt
38
vulnerability VCID-yur3-am6j-w7ay
39
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.6.1
aliases CVE-2018-10874, GHSA-3xvg-x47j-x75w, PYSEC-2018-81
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wqm7-2ajr-6ue8
Fixing_vulnerabilities
Risk_score4.5
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:pypi/ansible@0