Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:pypi/ansible@2.10.0rc1
Typepypi
Namespace
Nameansible
Version2.10.0rc1
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version2.10.1rc2
Latest_non_vulnerable_version12.2.0
Affected_by_vulnerabilities
0
url VCID-b8cv-v25q-1kh3
vulnerability_id VCID-b8cv-v25q-1kh3
summary An Improper Output Neutralization for Logs flaw was found in Ansible when using the uri module, where sensitive data is exposed to content and json output. This flaw allows an attacker to access the logs or outputs of performed tasks to read keys used in playbooks from other users within the uri module. The highest threat from this vulnerability is to data confidentiality.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-14330
reference_id
reference_type
scores
0
value 0.00218
scoring_system epss
scoring_elements 0.44392
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-14330
1
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-14330
reference_id
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-14330
2
reference_url https://github.com/advisories/GHSA-785x-qw4v-6872
reference_id
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-785x-qw4v-6872
3
reference_url https://github.com/ansible/ansible/commit/e0f25a2b1f9e6c21f751ba0ed2dc2eee2152983e
reference_id
reference_type
scores
url https://github.com/ansible/ansible/commit/e0f25a2b1f9e6c21f751ba0ed2dc2eee2152983e
4
reference_url https://github.com/ansible/ansible/issues/68400
reference_id
reference_type
scores
url https://github.com/ansible/ansible/issues/68400
5
reference_url https://github.com/ansible/ansible/pull/69653
reference_id
reference_type
scores
url https://github.com/ansible/ansible/pull/69653
6
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2020-3.yaml
reference_id
reference_type
scores
url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2020-3.yaml
7
reference_url https://www.debian.org/security/2021/dsa-4950
reference_id
reference_type
scores
url https://www.debian.org/security/2021/dsa-4950
8
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-14330
reference_id CVE-2020-14330
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2020-14330
fixed_packages
0
url pkg:pypi/ansible@2.10.0
purl pkg:pypi/ansible@2.10.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-hyr1-b223-bkef
1
vulnerability VCID-kgjy-7kdy-c3cg
2
vulnerability VCID-m87b-eb5y-8ydf
3
vulnerability VCID-uvca-5e2n-pqew
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.10.0
aliases CVE-2020-14330, GHSA-785x-qw4v-6872, PYSEC-2020-3
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-b8cv-v25q-1kh3
1
url VCID-kgjy-7kdy-c3cg
vulnerability_id VCID-kgjy-7kdy-c3cg
summary information disclosure
references
0
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1956477
reference_id
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1956477
1
reference_url https://security.archlinux.org/AVG-2056
reference_id AVG-2056
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2056
fixed_packages
0
url pkg:pypi/ansible@3.0.0
purl pkg:pypi/ansible@3.0.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@3.0.0
aliases CVE-2021-3533, PYSEC-2021-126
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kgjy-7kdy-c3cg
2
url VCID-m87b-eb5y-8ydf
vulnerability_id VCID-m87b-eb5y-8ydf
summary A flaw was found in Ansible Base when using the aws_ssm connection plugin as garbage collector is not happening after playbook run is completed. Files would remain in the bucket exposing the data. This issue affects directly data confidentiality.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-25635
reference_id
reference_type
scores
0
value 0.0008
scoring_system epss
scoring_elements 0.236
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-25635
1
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-25635
reference_id
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-25635
2
reference_url https://github.com/ansible/ansible
reference_id
reference_type
scores
url https://github.com/ansible/ansible
3
reference_url https://github.com/ansible-collections/community.aws/issues/222
reference_id
reference_type
scores
url https://github.com/ansible-collections/community.aws/issues/222
4
reference_url https://github.com/ansible-collections/community.aws/pull/237#issuecomment-1468591094
reference_id
reference_type
scores
url https://github.com/ansible-collections/community.aws/pull/237#issuecomment-1468591094
5
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2020-220.yaml
reference_id
reference_type
scores
url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2020-220.yaml
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-25635
reference_id CVE-2020-25635
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2020-25635
7
reference_url https://github.com/advisories/GHSA-f556-49jc-4rvc
reference_id GHSA-f556-49jc-4rvc
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-f556-49jc-4rvc
fixed_packages
0
url pkg:pypi/ansible@2.10.1
purl pkg:pypi/ansible@2.10.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kgjy-7kdy-c3cg
1
vulnerability VCID-uvca-5e2n-pqew
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.10.1
aliases CVE-2020-25635, GHSA-f556-49jc-4rvc, PYSEC-2020-220
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-m87b-eb5y-8ydf
Fixing_vulnerabilities
0
url VCID-6swz-79ue-bbef
vulnerability_id VCID-6swz-79ue-bbef
summary A flaw was found in the pipe lookup plugin of ansible. Arbitrary commands can be run, when the pipe lookup plugin uses subprocess.Popen() with shell=True, by overwriting ansible facts and the variable is not escaped by quote plugin. An attacker could take advantage and run arbitrary commands by overwriting the ansible facts.
references
0
reference_url https://access.redhat.com/errata/RHBA-2020:0547
reference_id
reference_type
scores
url https://access.redhat.com/errata/RHBA-2020:0547
1
reference_url https://access.redhat.com/errata/RHBA-2020:1539
reference_id
reference_type
scores
url https://access.redhat.com/errata/RHBA-2020:1539
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-1734
reference_id
reference_type
scores
0
value 0.00083
scoring_system epss
scoring_elements 0.24234
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-1734
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1801804
reference_id
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1801804
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1734
reference_id
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1734
5
reference_url https://github.com/advisories/GHSA-h39q-95q5-9jfp
reference_id
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-h39q-95q5-9jfp
6
reference_url https://github.com/ansible/ansible
reference_id
reference_type
scores
url https://github.com/ansible/ansible
7
reference_url https://github.com/ansible/ansible/commit/4f978af4ca16ad9828ffe42203b9615425195f8b
reference_id
reference_type
scores
url https://github.com/ansible/ansible/commit/4f978af4ca16ad9828ffe42203b9615425195f8b
8
reference_url https://github.com/ansible/ansible/commit/963bdd9983b91a48fb6949fb2ef41071e72d0be0
reference_id
reference_type
scores
url https://github.com/ansible/ansible/commit/963bdd9983b91a48fb6949fb2ef41071e72d0be0
9
reference_url https://github.com/ansible/ansible/commit/bff0724e9eab2770f874e018298f9ab74cc2a78f
reference_id
reference_type
scores
url https://github.com/ansible/ansible/commit/bff0724e9eab2770f874e018298f9ab74cc2a78f
10
reference_url https://github.com/ansible/ansible/commit/e5649ca3e807f17e7c034ee22791f107162973b0
reference_id
reference_type
scores
url https://github.com/ansible/ansible/commit/e5649ca3e807f17e7c034ee22791f107162973b0
11
reference_url https://github.com/ansible/ansible/issues/67792
reference_id
reference_type
scores
url https://github.com/ansible/ansible/issues/67792
12
reference_url https://github.com/ansible/ansible/issues/70159
reference_id
reference_type
scores
url https://github.com/ansible/ansible/issues/70159
13
reference_url https://github.com/ansible/ansible/pull/70596
reference_id
reference_type
scores
url https://github.com/ansible/ansible/pull/70596
14
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2020-6.yaml
reference_id
reference_type
scores
url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2020-6.yaml
15
reference_url https://access.redhat.com/security/cve/CVE-2020-1734
reference_id CVE-2020-1734
reference_type
scores
url https://access.redhat.com/security/cve/CVE-2020-1734
16
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-1734
reference_id CVE-2020-1734
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2020-1734
fixed_packages
0
url pkg:pypi/ansible@2.7.17
purl pkg:pypi/ansible@2.7.17
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3jxq-kxnz-6bfh
1
vulnerability VCID-5mcc-gtrr-j3e4
2
vulnerability VCID-6hdk-ywcn-4qe4
3
vulnerability VCID-95kg-bk3s-g7gx
4
vulnerability VCID-b8cv-v25q-1kh3
5
vulnerability VCID-enwa-2cfn-5uab
6
vulnerability VCID-gnq4-v5a7-m3ew
7
vulnerability VCID-kgjy-7kdy-c3cg
8
vulnerability VCID-m87b-eb5y-8ydf
9
vulnerability VCID-nx86-xnct-afbs
10
vulnerability VCID-qtt6-8kf8-1fbt
11
vulnerability VCID-uvca-5e2n-pqew
12
vulnerability VCID-zcmk-4k97-kkd9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.17
1
url pkg:pypi/ansible@2.8.13
purl pkg:pypi/ansible@2.8.13
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3jxq-kxnz-6bfh
1
vulnerability VCID-5mcc-gtrr-j3e4
2
vulnerability VCID-7d8z-g99x-7qh2
3
vulnerability VCID-95kg-bk3s-g7gx
4
vulnerability VCID-b8cv-v25q-1kh3
5
vulnerability VCID-enwa-2cfn-5uab
6
vulnerability VCID-kgjy-7kdy-c3cg
7
vulnerability VCID-m87b-eb5y-8ydf
8
vulnerability VCID-qtt6-8kf8-1fbt
9
vulnerability VCID-tfhg-gzz2-7qc5
10
vulnerability VCID-uvca-5e2n-pqew
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.13
2
url pkg:pypi/ansible@2.9.11
purl pkg:pypi/ansible@2.9.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3jxq-kxnz-6bfh
1
vulnerability VCID-5mcc-gtrr-j3e4
2
vulnerability VCID-7d8z-g99x-7qh2
3
vulnerability VCID-b8cv-v25q-1kh3
4
vulnerability VCID-enwa-2cfn-5uab
5
vulnerability VCID-kgjy-7kdy-c3cg
6
vulnerability VCID-m87b-eb5y-8ydf
7
vulnerability VCID-qtt6-8kf8-1fbt
8
vulnerability VCID-tfhg-gzz2-7qc5
9
vulnerability VCID-uvca-5e2n-pqew
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.11
3
url pkg:pypi/ansible@2.10.0rc1
purl pkg:pypi/ansible@2.10.0rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-b8cv-v25q-1kh3
1
vulnerability VCID-kgjy-7kdy-c3cg
2
vulnerability VCID-m87b-eb5y-8ydf
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.10.0rc1
aliases CVE-2020-1734, GHSA-h39q-95q5-9jfp, PYSEC-2020-6
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6swz-79ue-bbef
1
url VCID-nx86-xnct-afbs
vulnerability_id VCID-nx86-xnct-afbs
summary An incomplete fix was found for the fix of the flaw CVE-2020-1733 ansible: insecure temporary directory when running become_user from become directive. The provided fix is insufficient to prevent the race condition on systems using ACLs and FUSE filesystems. Ansible Engine 2.7.18, 2.8.12, and 2.9.9 as well as previous versions are affected and Ansible Tower 3.4.5, 3.5.6 and 3.6.4 as well as previous versions are affected.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-10744
reference_id
reference_type
scores
0
value 0.00038
scoring_system epss
scoring_elements 0.11851
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-10744
1
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10744
reference_id
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10744
2
reference_url https://github.com/advisories/GHSA-vp9j-rghq-8jhh
reference_id
reference_type
scores
0
value LOW
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-vp9j-rghq-8jhh
3
reference_url https://github.com/ansible/ansible
reference_id
reference_type
scores
url https://github.com/ansible/ansible
4
reference_url https://github.com/ansible/ansible/commit/77d0effcc5b2da1ef23e4ba32986a9759c27c10d
reference_id
reference_type
scores
url https://github.com/ansible/ansible/commit/77d0effcc5b2da1ef23e4ba32986a9759c27c10d
5
reference_url https://github.com/ansible/ansible/commit/84afa8e90cd168ff13208c8eae3e533ce7e21e1f
reference_id
reference_type
scores
url https://github.com/ansible/ansible/commit/84afa8e90cd168ff13208c8eae3e533ce7e21e1f
6
reference_url https://github.com/ansible/ansible/commit/ffd3757fc35468a97791e452e7f2d14c3e3fcb80
reference_id
reference_type
scores
url https://github.com/ansible/ansible/commit/ffd3757fc35468a97791e452e7f2d14c3e3fcb80
7
reference_url https://github.com/ansible/ansible/issues/69782
reference_id
reference_type
scores
url https://github.com/ansible/ansible/issues/69782
8
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2020-208.yaml
reference_id
reference_type
scores
url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2020-208.yaml
9
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-10744
reference_id CVE-2020-10744
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2020-10744
fixed_packages
0
url pkg:pypi/ansible@2.8.0a1
purl pkg:pypi/ansible@2.8.0a1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3jxq-kxnz-6bfh
1
vulnerability VCID-49gh-wgmc-mfew
2
vulnerability VCID-5mcc-gtrr-j3e4
3
vulnerability VCID-95kg-bk3s-g7gx
4
vulnerability VCID-aq21-sp74-17gk
5
vulnerability VCID-b8cv-v25q-1kh3
6
vulnerability VCID-enwa-2cfn-5uab
7
vulnerability VCID-gnq4-v5a7-m3ew
8
vulnerability VCID-kgjy-7kdy-c3cg
9
vulnerability VCID-m87b-eb5y-8ydf
10
vulnerability VCID-mk3k-n9wn-q3ct
11
vulnerability VCID-qtt6-8kf8-1fbt
12
vulnerability VCID-rarq-tdjt-hff3
13
vulnerability VCID-uvca-5e2n-pqew
14
vulnerability VCID-xn7b-vz2e-6qdh
15
vulnerability VCID-zcmk-4k97-kkd9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.0a1
1
url pkg:pypi/ansible@2.8.13
purl pkg:pypi/ansible@2.8.13
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3jxq-kxnz-6bfh
1
vulnerability VCID-5mcc-gtrr-j3e4
2
vulnerability VCID-7d8z-g99x-7qh2
3
vulnerability VCID-95kg-bk3s-g7gx
4
vulnerability VCID-b8cv-v25q-1kh3
5
vulnerability VCID-enwa-2cfn-5uab
6
vulnerability VCID-kgjy-7kdy-c3cg
7
vulnerability VCID-m87b-eb5y-8ydf
8
vulnerability VCID-qtt6-8kf8-1fbt
9
vulnerability VCID-tfhg-gzz2-7qc5
10
vulnerability VCID-uvca-5e2n-pqew
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.13
2
url pkg:pypi/ansible@2.9.10
purl pkg:pypi/ansible@2.9.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3jxq-kxnz-6bfh
1
vulnerability VCID-5mcc-gtrr-j3e4
2
vulnerability VCID-7d8z-g99x-7qh2
3
vulnerability VCID-b8cv-v25q-1kh3
4
vulnerability VCID-enwa-2cfn-5uab
5
vulnerability VCID-kgjy-7kdy-c3cg
6
vulnerability VCID-m87b-eb5y-8ydf
7
vulnerability VCID-qtt6-8kf8-1fbt
8
vulnerability VCID-tfhg-gzz2-7qc5
9
vulnerability VCID-uvca-5e2n-pqew
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.10
3
url pkg:pypi/ansible@2.9.12
purl pkg:pypi/ansible@2.9.12
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3jxq-kxnz-6bfh
1
vulnerability VCID-5mcc-gtrr-j3e4
2
vulnerability VCID-7d8z-g99x-7qh2
3
vulnerability VCID-b8cv-v25q-1kh3
4
vulnerability VCID-enwa-2cfn-5uab
5
vulnerability VCID-kgjy-7kdy-c3cg
6
vulnerability VCID-m87b-eb5y-8ydf
7
vulnerability VCID-qtt6-8kf8-1fbt
8
vulnerability VCID-uvca-5e2n-pqew
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.12
4
url pkg:pypi/ansible@2.10.0rc1
purl pkg:pypi/ansible@2.10.0rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-b8cv-v25q-1kh3
1
vulnerability VCID-kgjy-7kdy-c3cg
2
vulnerability VCID-m87b-eb5y-8ydf
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.10.0rc1
aliases CVE-2020-10744, GHSA-vp9j-rghq-8jhh, PYSEC-2020-208
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nx86-xnct-afbs
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.10.0rc1