Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:pypi/ansible@2.4
Typepypi
Namespace
Nameansible
Version2.4
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version12.0.0
Latest_non_vulnerable_version12.2.0
Affected_by_vulnerabilities
0
url VCID-3jh2-znva-2bb6
vulnerability_id VCID-3jh2-znva-2bb6
summary transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step.
references
0
reference_url https://access.redhat.com/errata/RHSA-2018:0591
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:0591
1
reference_url https://access.redhat.com/errata/RHSA-2018:0646
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:0646
2
reference_url https://access.redhat.com/errata/RHSA-2018:1124
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:1124
3
reference_url https://access.redhat.com/errata/RHSA-2018:1125
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:1125
4
reference_url https://access.redhat.com/errata/RHSA-2018:1213
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:1213
5
reference_url https://access.redhat.com/errata/RHSA-2018:1274
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:1274
6
reference_url https://access.redhat.com/errata/RHSA-2018:1328
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:1328
7
reference_url https://access.redhat.com/errata/RHSA-2018:1525
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:1525
8
reference_url https://access.redhat.com/errata/RHSA-2018:1972
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:1972
9
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7750.json
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7750.json
10
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-7750
reference_id
reference_type
scores
0
value 0.13825
scoring_system epss
scoring_elements 0.94289
published_at 2026-04-13T12:55:00Z
1
value 0.13825
scoring_system epss
scoring_elements 0.94303
published_at 2026-04-16T12:55:00Z
2
value 0.13825
scoring_system epss
scoring_elements 0.94309
published_at 2026-04-21T12:55:00Z
3
value 0.21328
scoring_system epss
scoring_elements 0.9568
published_at 2026-04-08T12:55:00Z
4
value 0.21328
scoring_system epss
scoring_elements 0.95684
published_at 2026-04-09T12:55:00Z
5
value 0.21328
scoring_system epss
scoring_elements 0.95688
published_at 2026-04-12T12:55:00Z
6
value 0.21328
scoring_system epss
scoring_elements 0.95655
published_at 2026-04-01T12:55:00Z
7
value 0.21328
scoring_system epss
scoring_elements 0.95669
published_at 2026-04-04T12:55:00Z
8
value 0.21328
scoring_system epss
scoring_elements 0.95672
published_at 2026-04-07T12:55:00Z
9
value 0.21328
scoring_system epss
scoring_elements 0.95664
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-7750
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7750
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7750
12
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 10
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
13
reference_url https://github.com/advisories/GHSA-232r-66cg-79px
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
2
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
3
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/advisories/GHSA-232r-66cg-79px
14
reference_url https://github.com/paramiko/paramiko
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/paramiko/paramiko
15
reference_url https://github.com/paramiko/paramiko/blob/e861c7697622774071ce73b46ffe8817eacdedfa/sites/www/changelog.rst?plain=1#L759-L763
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/paramiko/paramiko/blob/e861c7697622774071ce73b46ffe8817eacdedfa/sites/www/changelog.rst?plain=1#L759-L763
16
reference_url https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst
17
reference_url https://github.com/paramiko/paramiko/commit/e9dfd854bdaf8af15d7834f7502a0451d217bb8c
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/paramiko/paramiko/commit/e9dfd854bdaf8af15d7834f7502a0451d217bb8c
18
reference_url https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516
19
reference_url https://github.com/paramiko/paramiko/issues/1175
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/paramiko/paramiko/issues/1175
20
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/paramiko/PYSEC-2018-19.yaml
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/paramiko/PYSEC-2018-19.yaml
21
reference_url https://lists.debian.org/debian-lts-announce/2018/10/msg00018.html
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2018/10/msg00018.html
22
reference_url https://lists.debian.org/debian-lts-announce/2021/12/msg00025.html
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2021/12/msg00025.html
23
reference_url https://usn.ubuntu.com/3603-1
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://usn.ubuntu.com/3603-1
24
reference_url https://usn.ubuntu.com/3603-1/
reference_id
reference_type
scores
url https://usn.ubuntu.com/3603-1/
25
reference_url https://usn.ubuntu.com/3603-2
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://usn.ubuntu.com/3603-2
26
reference_url https://usn.ubuntu.com/3603-2/
reference_id
reference_type
scores
url https://usn.ubuntu.com/3603-2/
27
reference_url https://web.archive.org/web/20190831123128/http://www.securityfocus.com/bid/103713
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20190831123128/http://www.securityfocus.com/bid/103713
28
reference_url https://www.exploit-db.com/exploits/45712
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://www.exploit-db.com/exploits/45712
29
reference_url https://www.exploit-db.com/exploits/45712/
reference_id
reference_type
scores
url https://www.exploit-db.com/exploits/45712/
30
reference_url http://www.securityfocus.com/bid/103713
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/103713
31
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1557130
reference_id 1557130
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1557130
32
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892859
reference_id 892859
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892859
33
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/45712.py
reference_id CVE-2018-7750
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/45712.py
34
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-7750
reference_id CVE-2018-7750
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2018-7750
fixed_packages
0
url pkg:pypi/ansible@2.4.1.0
purl pkg:pypi/ansible@2.4.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-5hwt-gkgx-jqb4
2
vulnerability VCID-682j-e2pu-1uee
3
vulnerability VCID-ae1r-yq1g-rkem
4
vulnerability VCID-atun-stks-4kcb
5
vulnerability VCID-axc3-wcsk-q3eg
6
vulnerability VCID-b8zs-br97-57av
7
vulnerability VCID-c1xg-s3kx-gkft
8
vulnerability VCID-d4ka-dk4p-kfhb
9
vulnerability VCID-d7ez-s7qb-p3ay
10
vulnerability VCID-drt9-vx5r-akgm
11
vulnerability VCID-e3z2-ydhb-gqfg
12
vulnerability VCID-ezaq-tqd3-4yd1
13
vulnerability VCID-fj2p-7wkh-1fhq
14
vulnerability VCID-geaa-6dxx-tbcw
15
vulnerability VCID-hqar-fca3-cbht
16
vulnerability VCID-jnmu-c8dt-5yb6
17
vulnerability VCID-js7k-ptm9-2yh1
18
vulnerability VCID-kb5h-116p-33b4
19
vulnerability VCID-puq1-z5h7-pkdg
20
vulnerability VCID-qbdk-hxhg-wbh4
21
vulnerability VCID-r6bb-p28b-8fcn
22
vulnerability VCID-rdwq-93d6-c7b4
23
vulnerability VCID-rg5d-st3d-nbah
24
vulnerability VCID-rknj-nkgs-wyg2
25
vulnerability VCID-t6db-buke-nfhf
26
vulnerability VCID-tdp4-h4ht-pqhs
27
vulnerability VCID-ujbp-cc1r-wfe9
28
vulnerability VCID-v3h9-1t69-v7a3
29
vulnerability VCID-whyk-3ynn-zyf4
30
vulnerability VCID-wqm7-2ajr-6ue8
31
vulnerability VCID-x5e2-7whc-v3fc
32
vulnerability VCID-x94k-nxyd-27gs
33
vulnerability VCID-xw8r-fn6y-mbhp
34
vulnerability VCID-y91x-2rch-pkar
35
vulnerability VCID-yeea-n94x-qqch
36
vulnerability VCID-ykxk-6mpc-wkgt
37
vulnerability VCID-yur3-am6j-w7ay
38
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.4.1.0
aliases CVE-2018-7750, GHSA-232r-66cg-79px, PYSEC-2018-19
risk_score 10.0
exploitability 2.0
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3jh2-znva-2bb6
1
url VCID-wqm7-2ajr-6ue8
vulnerability_id VCID-wqm7-2ajr-6ue8
summary In ansible it was found that inventory variables are loaded from current working directory when running ad-hoc command which are under attacker's control, allowing to run arbitrary code as a result.
references
0
reference_url https://access.redhat.com/errata/RHBA-2018:3788
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHBA-2018:3788
1
reference_url https://access.redhat.com/errata/RHSA-2018:2150
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:2150
2
reference_url https://access.redhat.com/errata/RHSA-2018:2151
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:2151
3
reference_url https://access.redhat.com/errata/RHSA-2018:2152
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:2152
4
reference_url https://access.redhat.com/errata/RHSA-2018:2166
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:2166
5
reference_url https://access.redhat.com/errata/RHSA-2018:2321
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:2321
6
reference_url https://access.redhat.com/errata/RHSA-2018:2585
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:2585
7
reference_url https://access.redhat.com/errata/RHSA-2019:0054
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2019:0054
8
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10874.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10874.json
9
reference_url https://access.redhat.com/security/cve/CVE-2018-10874
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/security/cve/CVE-2018-10874
10
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-10874
reference_id
reference_type
scores
0
value 0.00047
scoring_system epss
scoring_elements 0.14546
published_at 2026-04-04T12:55:00Z
1
value 0.00047
scoring_system epss
scoring_elements 0.14476
published_at 2026-04-02T12:55:00Z
2
value 0.00047
scoring_system epss
scoring_elements 0.14406
published_at 2026-04-01T12:55:00Z
3
value 0.00047
scoring_system epss
scoring_elements 0.14312
published_at 2026-04-21T12:55:00Z
4
value 0.00047
scoring_system epss
scoring_elements 0.14437
published_at 2026-04-08T12:55:00Z
5
value 0.00047
scoring_system epss
scoring_elements 0.14492
published_at 2026-04-09T12:55:00Z
6
value 0.00047
scoring_system epss
scoring_elements 0.14441
published_at 2026-04-11T12:55:00Z
7
value 0.00047
scoring_system epss
scoring_elements 0.14404
published_at 2026-04-12T12:55:00Z
8
value 0.00047
scoring_system epss
scoring_elements 0.14348
published_at 2026-04-13T12:55:00Z
9
value 0.00047
scoring_system epss
scoring_elements 0.14239
published_at 2026-04-16T12:55:00Z
10
value 0.00047
scoring_system epss
scoring_elements 0.1424
published_at 2026-04-18T12:55:00Z
11
value 0.00047
scoring_system epss
scoring_elements 0.14354
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-10874
11
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1596528
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=1596528
12
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10874
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10874
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10874
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10874
14
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
15
reference_url https://github.com/ansible/ansible
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible
16
reference_url https://github.com/ansible/ansible/commit/10d6fe6c98cfee9a7be0fea6102ba5dec951aec7
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/10d6fe6c98cfee9a7be0fea6102ba5dec951aec7
17
reference_url https://github.com/ansible/ansible/commit/1f80949f964a946773f9d3ac1899535bd2cc2b8e
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/1f80949f964a946773f9d3ac1899535bd2cc2b8e
18
reference_url https://github.com/ansible/ansible/commit/44874addc7ea136f83c67d5869047ece02645fdb
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/44874addc7ea136f83c67d5869047ece02645fdb
19
reference_url https://github.com/ansible/ansible/pull/42067
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/pull/42067
20
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2018-81.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2018-81.yaml
21
reference_url https://usn.ubuntu.com/4072-1
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://usn.ubuntu.com/4072-1
22
reference_url https://usn.ubuntu.com/4072-1/
reference_id
reference_type
scores
url https://usn.ubuntu.com/4072-1/
23
reference_url https://web.archive.org/web/20201130165946/http://www.securitytracker.com/id/1041396
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20201130165946/http://www.securitytracker.com/id/1041396
24
reference_url http://www.securitytracker.com/id/1041396
reference_id
reference_type
scores
url http://www.securitytracker.com/id/1041396
25
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:ansible_engine:2.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.0:*:*:*:*:*:*:*
26
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.4:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:ansible_engine:2.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.4:*:*:*:*:*:*:*
27
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.5:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:ansible_engine:2.5:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.5:*:*:*:*:*:*:*
28
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.6:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:ansible_engine:2.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.6:*:*:*:*:*:*:*
29
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*
30
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:12:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:openstack:12:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:12:*:*:*:*:*:*:*
31
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*
32
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*
33
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization_host:4.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:virtualization_host:4.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization_host:4.0:*:*:*:*:*:*:*
34
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-10874
reference_id CVE-2018-10874
reference_type
scores
0
value 4.6
scoring_system cvssv2
scoring_elements AV:L/AC:L/Au:N/C:P/I:P/A:P
1
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
2
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
3
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
4
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2018-10874
35
reference_url https://github.com/advisories/GHSA-3xvg-x47j-x75w
reference_id GHSA-3xvg-x47j-x75w
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-3xvg-x47j-x75w
fixed_packages
0
url pkg:pypi/ansible@2.4.6.0
purl pkg:pypi/ansible@2.4.6.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-ae1r-yq1g-rkem
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b8zs-br97-57av
6
vulnerability VCID-c1xg-s3kx-gkft
7
vulnerability VCID-d4ka-dk4p-kfhb
8
vulnerability VCID-d7ez-s7qb-p3ay
9
vulnerability VCID-drt9-vx5r-akgm
10
vulnerability VCID-e3z2-ydhb-gqfg
11
vulnerability VCID-ezaq-tqd3-4yd1
12
vulnerability VCID-fj2p-7wkh-1fhq
13
vulnerability VCID-geaa-6dxx-tbcw
14
vulnerability VCID-hqar-fca3-cbht
15
vulnerability VCID-jnmu-c8dt-5yb6
16
vulnerability VCID-js7k-ptm9-2yh1
17
vulnerability VCID-kb5h-116p-33b4
18
vulnerability VCID-puq1-z5h7-pkdg
19
vulnerability VCID-qbdk-hxhg-wbh4
20
vulnerability VCID-r6bb-p28b-8fcn
21
vulnerability VCID-rdwq-93d6-c7b4
22
vulnerability VCID-rg5d-st3d-nbah
23
vulnerability VCID-rknj-nkgs-wyg2
24
vulnerability VCID-t6db-buke-nfhf
25
vulnerability VCID-tdp4-h4ht-pqhs
26
vulnerability VCID-ujbp-cc1r-wfe9
27
vulnerability VCID-v3h9-1t69-v7a3
28
vulnerability VCID-whyk-3ynn-zyf4
29
vulnerability VCID-x5e2-7whc-v3fc
30
vulnerability VCID-x94k-nxyd-27gs
31
vulnerability VCID-xw8r-fn6y-mbhp
32
vulnerability VCID-y91x-2rch-pkar
33
vulnerability VCID-yeea-n94x-qqch
34
vulnerability VCID-ykxk-6mpc-wkgt
35
vulnerability VCID-yur3-am6j-w7ay
36
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.4.6.0
1
url pkg:pypi/ansible@2.5.6
purl pkg:pypi/ansible@2.5.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-ae1r-yq1g-rkem
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b1pw-nusu-27c4
6
vulnerability VCID-b8zs-br97-57av
7
vulnerability VCID-c1xg-s3kx-gkft
8
vulnerability VCID-d4ka-dk4p-kfhb
9
vulnerability VCID-d7ez-s7qb-p3ay
10
vulnerability VCID-drt9-vx5r-akgm
11
vulnerability VCID-dzdx-wae5-8ydy
12
vulnerability VCID-e3z2-ydhb-gqfg
13
vulnerability VCID-ezaq-tqd3-4yd1
14
vulnerability VCID-fj2p-7wkh-1fhq
15
vulnerability VCID-geaa-6dxx-tbcw
16
vulnerability VCID-hqar-fca3-cbht
17
vulnerability VCID-jnmu-c8dt-5yb6
18
vulnerability VCID-js7k-ptm9-2yh1
19
vulnerability VCID-kb5h-116p-33b4
20
vulnerability VCID-puq1-z5h7-pkdg
21
vulnerability VCID-qbdk-hxhg-wbh4
22
vulnerability VCID-r6bb-p28b-8fcn
23
vulnerability VCID-rdwq-93d6-c7b4
24
vulnerability VCID-rg5d-st3d-nbah
25
vulnerability VCID-rknj-nkgs-wyg2
26
vulnerability VCID-t6db-buke-nfhf
27
vulnerability VCID-tdp4-h4ht-pqhs
28
vulnerability VCID-ujbp-cc1r-wfe9
29
vulnerability VCID-v3h9-1t69-v7a3
30
vulnerability VCID-whyk-3ynn-zyf4
31
vulnerability VCID-x5e2-7whc-v3fc
32
vulnerability VCID-x94k-nxyd-27gs
33
vulnerability VCID-xw8r-fn6y-mbhp
34
vulnerability VCID-y91x-2rch-pkar
35
vulnerability VCID-yeea-n94x-qqch
36
vulnerability VCID-ykxk-6mpc-wkgt
37
vulnerability VCID-yur3-am6j-w7ay
38
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.5.6
2
url pkg:pypi/ansible@2.6.1
purl pkg:pypi/ansible@2.6.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-ae1r-yq1g-rkem
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b1pw-nusu-27c4
6
vulnerability VCID-b8zs-br97-57av
7
vulnerability VCID-c1xg-s3kx-gkft
8
vulnerability VCID-ckt2-us5z-pyef
9
vulnerability VCID-d4ka-dk4p-kfhb
10
vulnerability VCID-d7ez-s7qb-p3ay
11
vulnerability VCID-drt9-vx5r-akgm
12
vulnerability VCID-dzdx-wae5-8ydy
13
vulnerability VCID-e3z2-ydhb-gqfg
14
vulnerability VCID-ezaq-tqd3-4yd1
15
vulnerability VCID-fj2p-7wkh-1fhq
16
vulnerability VCID-geaa-6dxx-tbcw
17
vulnerability VCID-hqar-fca3-cbht
18
vulnerability VCID-jnmu-c8dt-5yb6
19
vulnerability VCID-js7k-ptm9-2yh1
20
vulnerability VCID-kb5h-116p-33b4
21
vulnerability VCID-puq1-z5h7-pkdg
22
vulnerability VCID-qbdk-hxhg-wbh4
23
vulnerability VCID-r6bb-p28b-8fcn
24
vulnerability VCID-rdwq-93d6-c7b4
25
vulnerability VCID-rg5d-st3d-nbah
26
vulnerability VCID-rknj-nkgs-wyg2
27
vulnerability VCID-swpr-3qae-d7fe
28
vulnerability VCID-t6db-buke-nfhf
29
vulnerability VCID-tdp4-h4ht-pqhs
30
vulnerability VCID-ujbp-cc1r-wfe9
31
vulnerability VCID-v3h9-1t69-v7a3
32
vulnerability VCID-whyk-3ynn-zyf4
33
vulnerability VCID-x5e2-7whc-v3fc
34
vulnerability VCID-x94k-nxyd-27gs
35
vulnerability VCID-xw8r-fn6y-mbhp
36
vulnerability VCID-yeea-n94x-qqch
37
vulnerability VCID-ykxk-6mpc-wkgt
38
vulnerability VCID-yur3-am6j-w7ay
39
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.6.1
aliases CVE-2018-10874, GHSA-3xvg-x47j-x75w, PYSEC-2018-81
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wqm7-2ajr-6ue8
2
url VCID-y91x-2rch-pkar
vulnerability_id VCID-y91x-2rch-pkar
summary A flaw was found in ansible. ansible.cfg is read from the current working directory which can be altered to make it point to a plugin or a module path under the control of an attacker, thus allowing the attacker to execute arbitrary code.
references
0
reference_url http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00021.html
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00021.html
1
reference_url https://access.redhat.com/errata/RHBA-2018:3788
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHBA-2018:3788
2
reference_url https://access.redhat.com/errata/RHSA-2018:2150
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:2150
3
reference_url https://access.redhat.com/errata/RHSA-2018:2151
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:2151
4
reference_url https://access.redhat.com/errata/RHSA-2018:2152
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:2152
5
reference_url https://access.redhat.com/errata/RHSA-2018:2166
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:2166
6
reference_url https://access.redhat.com/errata/RHSA-2018:2321
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:2321
7
reference_url https://access.redhat.com/errata/RHSA-2018:2585
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:2585
8
reference_url https://access.redhat.com/errata/RHSA-2019:0054
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2019:0054
9
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10875.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10875.json
10
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-10875
reference_id
reference_type
scores
0
value 0.00043
scoring_system epss
scoring_elements 0.13233
published_at 2026-04-01T12:55:00Z
1
value 0.00043
scoring_system epss
scoring_elements 0.13194
published_at 2026-04-07T12:55:00Z
2
value 0.00043
scoring_system epss
scoring_elements 0.13274
published_at 2026-04-08T12:55:00Z
3
value 0.00043
scoring_system epss
scoring_elements 0.13325
published_at 2026-04-09T12:55:00Z
4
value 0.00043
scoring_system epss
scoring_elements 0.13293
published_at 2026-04-11T12:55:00Z
5
value 0.00043
scoring_system epss
scoring_elements 0.13255
published_at 2026-04-12T12:55:00Z
6
value 0.00043
scoring_system epss
scoring_elements 0.13206
published_at 2026-04-13T12:55:00Z
7
value 0.00043
scoring_system epss
scoring_elements 0.13112
published_at 2026-04-18T12:55:00Z
8
value 0.00043
scoring_system epss
scoring_elements 0.13334
published_at 2026-04-02T12:55:00Z
9
value 0.00043
scoring_system epss
scoring_elements 0.13397
published_at 2026-04-04T12:55:00Z
10
value 0.00056
scoring_system epss
scoring_elements 0.1766
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-10875
11
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10875
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10875
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10855
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10855
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10875
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10875
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16837
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16837
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16876
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16876
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3828
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3828
17
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
18
reference_url https://github.com/ansible/ansible
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible
19
reference_url https://github.com/ansible/ansible/commit/4cecbe81adbc655d7ab734165d3ac539f8ba5981
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/4cecbe81adbc655d7ab734165d3ac539f8ba5981
20
reference_url https://github.com/ansible/ansible/commit/f32c42c37aaf7b9db93ea3151b2f42a0c4bd8172
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/f32c42c37aaf7b9db93ea3151b2f42a0c4bd8172
21
reference_url https://github.com/ansible/ansible/commit/ff980afefdbe4ceb828bdb1bb2eef03cf616bf63
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/commit/ff980afefdbe4ceb828bdb1bb2eef03cf616bf63
22
reference_url https://github.com/ansible/ansible/issues/42388
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/issues/42388
23
reference_url https://github.com/ansible/ansible/pull/42070
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/pull/42070
24
reference_url https://github.com/ansible/ansible/pull/43583
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ansible/ansible/pull/43583
25
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2018-43.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2018-43.yaml
26
reference_url https://lists.debian.org/debian-lts-announce/2019/09/msg00016.html
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2019/09/msg00016.html
27
reference_url https://usn.ubuntu.com/4072-1
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://usn.ubuntu.com/4072-1
28
reference_url https://usn.ubuntu.com/4072-1/
reference_id
reference_type
scores
url https://usn.ubuntu.com/4072-1/
29
reference_url https://web.archive.org/web/20201130165946/http://www.securitytracker.com/id/1041396
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20201130165946/http://www.securitytracker.com/id/1041396
30
reference_url https://www.debian.org/security/2019/dsa-4396
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.debian.org/security/2019/dsa-4396
31
reference_url http://www.securitytracker.com/id/1041396
reference_id
reference_type
scores
url http://www.securitytracker.com/id/1041396
32
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1596533
reference_id 1596533
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1596533
33
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:ansible_engine:2.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.0:*:*:*:*:*:*:*
34
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.4:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:ansible_engine:2.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.4:*:*:*:*:*:*:*
35
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.5:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:ansible_engine:2.5:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.5:*:*:*:*:*:*:*
36
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.6:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:ansible_engine:2.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ansible_engine:2.6:*:*:*:*:*:*:*
37
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ceph_storage:2.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:ceph_storage:2.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ceph_storage:2.0:*:*:*:*:*:*:*
38
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ceph_storage:3.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:ceph_storage:3.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:ceph_storage:3.0:*:*:*:*:*:*:*
39
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:gluster_storage:3.0.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:gluster_storage:3.0.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:gluster_storage:3.0.0:*:*:*:*:*:*:*
40
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openshift:3.0:*:*:*:enterprise:*:*:*
reference_id cpe:2.3:a:redhat:openshift:3.0:*:*:*:enterprise:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openshift:3.0:*:*:*:enterprise:*:*:*
41
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*
42
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:12:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:openstack:12:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:12:*:*:*:*:*:*:*
43
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*
44
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*
45
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization_host:4.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:virtualization_host:4.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization_host:4.0:*:*:*:*:*:*:*
46
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:suse:package_hub:-:*:*:*:*:*:*:*
reference_id cpe:2.3:a:suse:package_hub:-:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:suse:package_hub:-:*:*:*:*:*:*:*
47
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
48
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
49
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*
50
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
51
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
52
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:suse_linux_enterprise_server:12:*:*:*:*:*:*:*
reference_id cpe:2.3:o:suse:suse_linux_enterprise_server:12:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:suse_linux_enterprise_server:12:*:*:*:*:*:*:*
53
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-10875
reference_id CVE-2018-10875
reference_type
scores
0
value 4.6
scoring_system cvssv2
scoring_elements AV:L/AC:L/Au:N/C:P/I:P/A:P
1
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
2
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
3
value 8.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
4
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2018-10875
54
reference_url https://github.com/advisories/GHSA-fc4h-467w-46rh
reference_id GHSA-fc4h-467w-46rh
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-fc4h-467w-46rh
fixed_packages
0
url pkg:pypi/ansible@2.4.6.0
purl pkg:pypi/ansible@2.4.6.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-ae1r-yq1g-rkem
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b8zs-br97-57av
6
vulnerability VCID-c1xg-s3kx-gkft
7
vulnerability VCID-d4ka-dk4p-kfhb
8
vulnerability VCID-d7ez-s7qb-p3ay
9
vulnerability VCID-drt9-vx5r-akgm
10
vulnerability VCID-e3z2-ydhb-gqfg
11
vulnerability VCID-ezaq-tqd3-4yd1
12
vulnerability VCID-fj2p-7wkh-1fhq
13
vulnerability VCID-geaa-6dxx-tbcw
14
vulnerability VCID-hqar-fca3-cbht
15
vulnerability VCID-jnmu-c8dt-5yb6
16
vulnerability VCID-js7k-ptm9-2yh1
17
vulnerability VCID-kb5h-116p-33b4
18
vulnerability VCID-puq1-z5h7-pkdg
19
vulnerability VCID-qbdk-hxhg-wbh4
20
vulnerability VCID-r6bb-p28b-8fcn
21
vulnerability VCID-rdwq-93d6-c7b4
22
vulnerability VCID-rg5d-st3d-nbah
23
vulnerability VCID-rknj-nkgs-wyg2
24
vulnerability VCID-t6db-buke-nfhf
25
vulnerability VCID-tdp4-h4ht-pqhs
26
vulnerability VCID-ujbp-cc1r-wfe9
27
vulnerability VCID-v3h9-1t69-v7a3
28
vulnerability VCID-whyk-3ynn-zyf4
29
vulnerability VCID-x5e2-7whc-v3fc
30
vulnerability VCID-x94k-nxyd-27gs
31
vulnerability VCID-xw8r-fn6y-mbhp
32
vulnerability VCID-y91x-2rch-pkar
33
vulnerability VCID-yeea-n94x-qqch
34
vulnerability VCID-ykxk-6mpc-wkgt
35
vulnerability VCID-yur3-am6j-w7ay
36
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.4.6.0
1
url pkg:pypi/ansible@2.5.6
purl pkg:pypi/ansible@2.5.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-ae1r-yq1g-rkem
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b1pw-nusu-27c4
6
vulnerability VCID-b8zs-br97-57av
7
vulnerability VCID-c1xg-s3kx-gkft
8
vulnerability VCID-d4ka-dk4p-kfhb
9
vulnerability VCID-d7ez-s7qb-p3ay
10
vulnerability VCID-drt9-vx5r-akgm
11
vulnerability VCID-dzdx-wae5-8ydy
12
vulnerability VCID-e3z2-ydhb-gqfg
13
vulnerability VCID-ezaq-tqd3-4yd1
14
vulnerability VCID-fj2p-7wkh-1fhq
15
vulnerability VCID-geaa-6dxx-tbcw
16
vulnerability VCID-hqar-fca3-cbht
17
vulnerability VCID-jnmu-c8dt-5yb6
18
vulnerability VCID-js7k-ptm9-2yh1
19
vulnerability VCID-kb5h-116p-33b4
20
vulnerability VCID-puq1-z5h7-pkdg
21
vulnerability VCID-qbdk-hxhg-wbh4
22
vulnerability VCID-r6bb-p28b-8fcn
23
vulnerability VCID-rdwq-93d6-c7b4
24
vulnerability VCID-rg5d-st3d-nbah
25
vulnerability VCID-rknj-nkgs-wyg2
26
vulnerability VCID-t6db-buke-nfhf
27
vulnerability VCID-tdp4-h4ht-pqhs
28
vulnerability VCID-ujbp-cc1r-wfe9
29
vulnerability VCID-v3h9-1t69-v7a3
30
vulnerability VCID-whyk-3ynn-zyf4
31
vulnerability VCID-x5e2-7whc-v3fc
32
vulnerability VCID-x94k-nxyd-27gs
33
vulnerability VCID-xw8r-fn6y-mbhp
34
vulnerability VCID-y91x-2rch-pkar
35
vulnerability VCID-yeea-n94x-qqch
36
vulnerability VCID-ykxk-6mpc-wkgt
37
vulnerability VCID-yur3-am6j-w7ay
38
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.5.6
2
url pkg:pypi/ansible@2.6.1
purl pkg:pypi/ansible@2.6.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4yvf-k192-9fca
1
vulnerability VCID-682j-e2pu-1uee
2
vulnerability VCID-ae1r-yq1g-rkem
3
vulnerability VCID-atun-stks-4kcb
4
vulnerability VCID-axc3-wcsk-q3eg
5
vulnerability VCID-b1pw-nusu-27c4
6
vulnerability VCID-b8zs-br97-57av
7
vulnerability VCID-c1xg-s3kx-gkft
8
vulnerability VCID-ckt2-us5z-pyef
9
vulnerability VCID-d4ka-dk4p-kfhb
10
vulnerability VCID-d7ez-s7qb-p3ay
11
vulnerability VCID-drt9-vx5r-akgm
12
vulnerability VCID-dzdx-wae5-8ydy
13
vulnerability VCID-e3z2-ydhb-gqfg
14
vulnerability VCID-ezaq-tqd3-4yd1
15
vulnerability VCID-fj2p-7wkh-1fhq
16
vulnerability VCID-geaa-6dxx-tbcw
17
vulnerability VCID-hqar-fca3-cbht
18
vulnerability VCID-jnmu-c8dt-5yb6
19
vulnerability VCID-js7k-ptm9-2yh1
20
vulnerability VCID-kb5h-116p-33b4
21
vulnerability VCID-puq1-z5h7-pkdg
22
vulnerability VCID-qbdk-hxhg-wbh4
23
vulnerability VCID-r6bb-p28b-8fcn
24
vulnerability VCID-rdwq-93d6-c7b4
25
vulnerability VCID-rg5d-st3d-nbah
26
vulnerability VCID-rknj-nkgs-wyg2
27
vulnerability VCID-swpr-3qae-d7fe
28
vulnerability VCID-t6db-buke-nfhf
29
vulnerability VCID-tdp4-h4ht-pqhs
30
vulnerability VCID-ujbp-cc1r-wfe9
31
vulnerability VCID-v3h9-1t69-v7a3
32
vulnerability VCID-whyk-3ynn-zyf4
33
vulnerability VCID-x5e2-7whc-v3fc
34
vulnerability VCID-x94k-nxyd-27gs
35
vulnerability VCID-xw8r-fn6y-mbhp
36
vulnerability VCID-yeea-n94x-qqch
37
vulnerability VCID-ykxk-6mpc-wkgt
38
vulnerability VCID-yur3-am6j-w7ay
39
vulnerability VCID-zzzs-scbg-bbe9
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.6.1
aliases CVE-2018-10875, GHSA-fc4h-467w-46rh, PYSEC-2018-43
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-y91x-2rch-pkar
Fixing_vulnerabilities
Risk_score10.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.4