| 0 |
| url |
VCID-21cm-whkj-f7b2 |
| vulnerability_id |
VCID-21cm-whkj-f7b2 |
| summary |
An exploitable vulnerability exists in the yaml loading functionality of ansible-vault before 1.0.5. A specially crafted vault can execute arbitrary python commands resulting in command execution. An attacker can insert python into the vault to trigger this vulnerability. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2017-2809 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00631 |
| scoring_system |
epss |
| scoring_elements |
0.70244 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00631 |
| scoring_system |
epss |
| scoring_elements |
0.70306 |
| published_at |
2026-04-13T12:55:00Z |
|
| 2 |
| value |
0.00631 |
| scoring_system |
epss |
| scoring_elements |
0.70318 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.00631 |
| scoring_system |
epss |
| scoring_elements |
0.70333 |
| published_at |
2026-04-11T12:55:00Z |
|
| 4 |
| value |
0.00631 |
| scoring_system |
epss |
| scoring_elements |
0.7031 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.00631 |
| scoring_system |
epss |
| scoring_elements |
0.70295 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00631 |
| scoring_system |
epss |
| scoring_elements |
0.7025 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.00631 |
| scoring_system |
epss |
| scoring_elements |
0.70273 |
| published_at |
2026-04-04T12:55:00Z |
|
| 8 |
| value |
0.00631 |
| scoring_system |
epss |
| scoring_elements |
0.70256 |
| published_at |
2026-04-02T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2017-2809 |
|
| 1 |
|
| 2 |
| reference_url |
https://github.com/tomoh1r/ansible-vault |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
8.5 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/tomoh1r/ansible-vault |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2017-2809 |
| reference_id |
CVE-2017-2809 |
| reference_type |
|
| scores |
| 0 |
| value |
6.8 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:M/Au:N/C:P/I:P/A:P |
|
| 1 |
| value |
7.5 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H |
|
| 2 |
| value |
7.8 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
|
| 3 |
| value |
7.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
|
| 4 |
| value |
8.5 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 5 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2017-2809 |
|
| 11 |
| reference_url |
https://github.com/advisories/GHSA-c2w9-48qc-qpj4 |
| reference_id |
GHSA-c2w9-48qc-qpj4 |
| reference_type |
|
| scores |
| 0 |
| value |
7.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
HIGH |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
8.5 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 3 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-c2w9-48qc-qpj4 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:pypi/ansible@1.1 |
| purl |
pkg:pypi/ansible@1.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2v57-zem6-47hq |
|
| 1 |
| vulnerability |
VCID-4b5u-b82x-zkc5 |
|
| 2 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 3 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 4 |
| vulnerability |
VCID-7sp5-368w-w3fd |
|
| 5 |
| vulnerability |
VCID-8pn7-4k42-6qeb |
|
| 6 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 7 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 8 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 9 |
| vulnerability |
VCID-b2r5-fb4m-jbcr |
|
| 10 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 11 |
| vulnerability |
VCID-bc3y-qwxc-p3dx |
|
| 12 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 13 |
| vulnerability |
VCID-c22m-1buy-3uc5 |
|
| 14 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 15 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 16 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 17 |
| vulnerability |
VCID-dtc3-3bxm-fkcg |
|
| 18 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 19 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 20 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 21 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 22 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 23 |
| vulnerability |
VCID-hfxe-jjf5-nqd1 |
|
| 24 |
| vulnerability |
VCID-hnjw-vehk-2fdd |
|
| 25 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 26 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 27 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 28 |
| vulnerability |
VCID-jwsu-7znb-kueg |
|
| 29 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 30 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 31 |
| vulnerability |
VCID-q4q1-aueh-sub2 |
|
| 32 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 33 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 34 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 35 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 36 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 37 |
| vulnerability |
VCID-rsry-fw45-9yev |
|
| 38 |
| vulnerability |
VCID-s1r4-29kw-5kbg |
|
| 39 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 40 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 41 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 42 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 43 |
| vulnerability |
VCID-vdyk-rcxz-z7an |
|
| 44 |
| vulnerability |
VCID-w6be-213x-1yh3 |
|
| 45 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 46 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 47 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 48 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 49 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 50 |
| vulnerability |
VCID-yc8n-wxb4-1uaz |
|
| 51 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 52 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 53 |
| vulnerability |
VCID-ynmp-3yfy-sfc1 |
|
| 54 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 55 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 56 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@1.1 |
|
|
| aliases |
CVE-2017-2809, GHSA-c2w9-48qc-qpj4, PYSEC-2017-5
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-21cm-whkj-f7b2 |
|
| 1 |
| url |
VCID-2v57-zem6-47hq |
| vulnerability_id |
VCID-2v57-zem6-47hq |
| summary |
runner/connection_plugins/ssh.py in Ansible before 1.2.3, when using ControlPersist, allows local users to redirect a ssh session via a symlink attack on a socket file with a predictable name in /tmp/. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2013-4259 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00051 |
| scoring_system |
epss |
| scoring_elements |
0.15789 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00051 |
| scoring_system |
epss |
| scoring_elements |
0.15735 |
| published_at |
2026-04-13T12:55:00Z |
|
| 2 |
| value |
0.00051 |
| scoring_system |
epss |
| scoring_elements |
0.15805 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.00051 |
| scoring_system |
epss |
| scoring_elements |
0.15842 |
| published_at |
2026-04-11T12:55:00Z |
|
| 4 |
| value |
0.00051 |
| scoring_system |
epss |
| scoring_elements |
0.15865 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.00051 |
| scoring_system |
epss |
| scoring_elements |
0.15804 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00051 |
| scoring_system |
epss |
| scoring_elements |
0.15719 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.00051 |
| scoring_system |
epss |
| scoring_elements |
0.15919 |
| published_at |
2026-04-04T12:55:00Z |
|
| 8 |
| value |
0.00051 |
| scoring_system |
epss |
| scoring_elements |
0.15855 |
| published_at |
2026-04-02T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2013-4259 |
|
| 1 |
|
| 2 |
|
| 3 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.0 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N |
|
| 1 |
| value |
2.1 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
LOW |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
| reference_url |
http://www.ansible.com/security |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.0 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N |
|
| 1 |
| value |
2.1 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
LOW |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
http://www.ansible.com/security |
|
| 8 |
|
| 9 |
|
| 10 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@1.2.3 |
| purl |
pkg:pypi/ansible@1.2.3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4b5u-b82x-zkc5 |
|
| 1 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 2 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 3 |
| vulnerability |
VCID-7sp5-368w-w3fd |
|
| 4 |
| vulnerability |
VCID-8pn7-4k42-6qeb |
|
| 5 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 6 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 7 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 8 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 9 |
| vulnerability |
VCID-bc3y-qwxc-p3dx |
|
| 10 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 11 |
| vulnerability |
VCID-c22m-1buy-3uc5 |
|
| 12 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 13 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 14 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 15 |
| vulnerability |
VCID-dtc3-3bxm-fkcg |
|
| 16 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 17 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 18 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 19 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 20 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 21 |
| vulnerability |
VCID-hfxe-jjf5-nqd1 |
|
| 22 |
| vulnerability |
VCID-hnjw-vehk-2fdd |
|
| 23 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 24 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 25 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 26 |
| vulnerability |
VCID-jwsu-7znb-kueg |
|
| 27 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 28 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 29 |
| vulnerability |
VCID-q4q1-aueh-sub2 |
|
| 30 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 31 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 32 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 33 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 34 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 35 |
| vulnerability |
VCID-s1r4-29kw-5kbg |
|
| 36 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 37 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 38 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 39 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 40 |
| vulnerability |
VCID-vdyk-rcxz-z7an |
|
| 41 |
| vulnerability |
VCID-w6be-213x-1yh3 |
|
| 42 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 43 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 44 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 45 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 46 |
| vulnerability |
VCID-xak4-qbwg-z3b7 |
|
| 47 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 48 |
| vulnerability |
VCID-yc8n-wxb4-1uaz |
|
| 49 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 50 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 51 |
| vulnerability |
VCID-ynmp-3yfy-sfc1 |
|
| 52 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 53 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 54 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@1.2.3 |
|
|
| aliases |
CVE-2013-4259, GHSA-fj24-ghp9-39v3, PYSEC-2013-1
|
| risk_score |
1.8 |
| exploitability |
0.5 |
| weighted_severity |
3.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-2v57-zem6-47hq |
|
| 2 |
| url |
VCID-4b5u-b82x-zkc5 |
| vulnerability_id |
VCID-4b5u-b82x-zkc5 |
| summary |
Multiple argument injection vulnerabilities in Ansible before 1.6.7 allow remote attackers to execute arbitrary code by leveraging access to an Ansible managed host and providing a crafted fact, as demonstrated by a fact with (1) a trailing " src=" clause, (2) a trailing " temp=" clause, or (3) a trailing " validate=" clause accompanied by a shell command. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-4967 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.04747 |
| scoring_system |
epss |
| scoring_elements |
0.89403 |
| published_at |
2026-04-07T12:55:00Z |
|
| 1 |
| value |
0.04747 |
| scoring_system |
epss |
| scoring_elements |
0.89426 |
| published_at |
2026-04-13T12:55:00Z |
|
| 2 |
| value |
0.04747 |
| scoring_system |
epss |
| scoring_elements |
0.8943 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.04747 |
| scoring_system |
epss |
| scoring_elements |
0.89432 |
| published_at |
2026-04-11T12:55:00Z |
|
| 4 |
| value |
0.04747 |
| scoring_system |
epss |
| scoring_elements |
0.89423 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.04747 |
| scoring_system |
epss |
| scoring_elements |
0.89419 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.04747 |
| scoring_system |
epss |
| scoring_elements |
0.89385 |
| published_at |
2026-04-01T12:55:00Z |
|
| 7 |
| value |
0.04747 |
| scoring_system |
epss |
| scoring_elements |
0.8939 |
| published_at |
2026-04-02T12:55:00Z |
|
| 8 |
| value |
0.04747 |
| scoring_system |
epss |
| scoring_elements |
0.89401 |
| published_at |
2026-04-04T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-4967 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@1.6.7 |
| purl |
pkg:pypi/ansible@1.6.7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 8 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 9 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 10 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 11 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 12 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 13 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 14 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 15 |
| vulnerability |
VCID-hfxe-jjf5-nqd1 |
|
| 16 |
| vulnerability |
VCID-hnjw-vehk-2fdd |
|
| 17 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 18 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 19 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 20 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 21 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 22 |
| vulnerability |
VCID-q4q1-aueh-sub2 |
|
| 23 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 24 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 25 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 26 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 27 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 28 |
| vulnerability |
VCID-s1r4-29kw-5kbg |
|
| 29 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 30 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 31 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 32 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 33 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 34 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 35 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 36 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 37 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 38 |
| vulnerability |
VCID-yc8n-wxb4-1uaz |
|
| 39 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 40 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 41 |
| vulnerability |
VCID-ynmp-3yfy-sfc1 |
|
| 42 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 43 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 44 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@1.6.7 |
|
|
| aliases |
CVE-2014-4967, GHSA-64cw-m57j-65xj, PYSEC-2020-205
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-4b5u-b82x-zkc5 |
|
| 3 |
| url |
VCID-4yvf-k192-9fca |
| vulnerability_id |
VCID-4yvf-k192-9fca |
| summary |
A flaw was found in Ansible if an ansible user sets ANSIBLE_ASYNC_DIR to a subdirectory of a world writable directory. When this occurs, there is a race condition on the managed machine. A malicious, non-privileged account on the remote machine can exploit the race condition to access the async result data. This flaw affects Ansible Tower 3.7 and Ansible Automation Platform 1.2. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.0.0.1 |
| purl |
pkg:pypi/ansible@2.0.0.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 8 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 9 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 10 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 11 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 12 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 13 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 14 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 15 |
| vulnerability |
VCID-hfxe-jjf5-nqd1 |
|
| 16 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 17 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 18 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 19 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 20 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 21 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 22 |
| vulnerability |
VCID-q4q1-aueh-sub2 |
|
| 23 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 24 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 25 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 26 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 27 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 28 |
| vulnerability |
VCID-s1r4-29kw-5kbg |
|
| 29 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 30 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 31 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 32 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 33 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 34 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 35 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 36 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 37 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 38 |
| vulnerability |
VCID-yc8n-wxb4-1uaz |
|
| 39 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 40 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 41 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 42 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 43 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.0.0.1 |
|
| 1 |
|
|
| aliases |
CVE-2021-3533, PYSEC-2021-126
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-4yvf-k192-9fca |
|
| 4 |
| url |
VCID-682j-e2pu-1uee |
| vulnerability_id |
VCID-682j-e2pu-1uee |
| summary |
Improper Neutralization of Special Elements Used in a Template Engine
A template injection flaw was found in Ansible where a user's controller internal templating operations may remove the unsafe designation from template data. This issue could allow an attacker to use a specially crafted file to introduce code injection when supplying templating data. |
| references |
| 0 |
| reference_url |
https://access.redhat.com/errata/RHSA-2023:7773 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
6.6 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N |
|
| 1 |
| value |
7.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 3 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-07-19T03:55:28Z/ |
|
|
| url |
https://access.redhat.com/errata/RHSA-2023:7773 |
|
| 1 |
|
| 2 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2023-5764 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00071 |
| scoring_system |
epss |
| scoring_elements |
0.2163 |
| published_at |
2026-04-08T12:55:00Z |
|
| 1 |
| value |
0.00071 |
| scoring_system |
epss |
| scoring_elements |
0.21687 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00071 |
| scoring_system |
epss |
| scoring_elements |
0.21801 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00071 |
| scoring_system |
epss |
| scoring_elements |
0.21552 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00071 |
| scoring_system |
epss |
| scoring_elements |
0.21699 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.00071 |
| scoring_system |
epss |
| scoring_elements |
0.21746 |
| published_at |
2026-04-02T12:55:00Z |
|
| 6 |
| value |
0.00071 |
| scoring_system |
epss |
| scoring_elements |
0.2166 |
| published_at |
2026-04-12T12:55:00Z |
|
| 7 |
| value |
0.00071 |
| scoring_system |
epss |
| scoring_elements |
0.21603 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2023-5764 |
|
| 3 |
| reference_url |
https://bugzilla.redhat.com/show_bug.cgi?id=2247629 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
6.6 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N |
|
| 1 |
| value |
7.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 3 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-07-19T03:55:28Z/ |
|
|
| url |
https://bugzilla.redhat.com/show_bug.cgi?id=2247629 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
| reference_url |
https://access.redhat.com/security/cve/CVE-2023-5764 |
| reference_id |
CVE-2023-5764 |
| reference_type |
|
| scores |
| 0 |
| value |
6.6 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N |
|
| 1 |
| value |
7.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 3 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-07-19T03:55:28Z/ |
|
|
| url |
https://access.redhat.com/security/cve/CVE-2023-5764 |
|
| 20 |
|
| 21 |
|
| 22 |
|
|
| fixed_packages |
|
| aliases |
CVE-2023-5764, GHSA-7j69-qfc3-2fq9
|
| risk_score |
3.2 |
| exploitability |
0.5 |
| weighted_severity |
6.4 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-682j-e2pu-1uee |
|
| 5 |
| url |
VCID-7sp5-368w-w3fd |
| vulnerability_id |
VCID-7sp5-368w-w3fd |
| summary |
The safe_eval function in Ansible before 1.6.4 does not properly restrict the code subset, which allows remote attackers to execute arbitrary code via crafted instructions. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-4657. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-4678 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.04731 |
| scoring_system |
epss |
| scoring_elements |
0.89402 |
| published_at |
2026-04-12T12:55:00Z |
|
| 1 |
| value |
0.04731 |
| scoring_system |
epss |
| scoring_elements |
0.89405 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.04731 |
| scoring_system |
epss |
| scoring_elements |
0.89357 |
| published_at |
2026-04-01T12:55:00Z |
|
| 3 |
| value |
0.04731 |
| scoring_system |
epss |
| scoring_elements |
0.89363 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.04731 |
| scoring_system |
epss |
| scoring_elements |
0.89374 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.04731 |
| scoring_system |
epss |
| scoring_elements |
0.89376 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.04731 |
| scoring_system |
epss |
| scoring_elements |
0.89397 |
| published_at |
2026-04-13T12:55:00Z |
|
| 7 |
| value |
0.04731 |
| scoring_system |
epss |
| scoring_elements |
0.89393 |
| published_at |
2026-04-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-4678 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@1.6.4 |
| purl |
pkg:pypi/ansible@1.6.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4b5u-b82x-zkc5 |
|
| 1 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 2 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 3 |
| vulnerability |
VCID-8pn7-4k42-6qeb |
|
| 4 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 5 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 6 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 7 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 8 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 9 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 10 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 11 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 12 |
| vulnerability |
VCID-dtc3-3bxm-fkcg |
|
| 13 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 14 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 15 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 16 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 17 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 18 |
| vulnerability |
VCID-hfxe-jjf5-nqd1 |
|
| 19 |
| vulnerability |
VCID-hnjw-vehk-2fdd |
|
| 20 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 21 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 22 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 23 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 24 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 25 |
| vulnerability |
VCID-q4q1-aueh-sub2 |
|
| 26 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 27 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 28 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 29 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 30 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 31 |
| vulnerability |
VCID-s1r4-29kw-5kbg |
|
| 32 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 33 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 34 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 35 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 36 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 37 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 38 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 39 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 40 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 41 |
| vulnerability |
VCID-yc8n-wxb4-1uaz |
|
| 42 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 43 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 44 |
| vulnerability |
VCID-ynmp-3yfy-sfc1 |
|
| 45 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 46 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 47 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@1.6.4 |
|
|
| aliases |
CVE-2014-4678, GHSA-66c7-5pwv-mm3j, PYSEC-2020-203
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-7sp5-368w-w3fd |
|
| 6 |
| url |
VCID-8pn7-4k42-6qeb |
| vulnerability_id |
VCID-8pn7-4k42-6qeb |
| summary |
Ansible before 1.6.7 does not prevent inventory data with "{{" and "lookup" substrings, and does not prevent remote data with "{{" substrings, which allows remote attackers to execute arbitrary code via (1) crafted lookup('pipe') calls or (2) crafted Jinja2 data. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-4966 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.04747 |
| scoring_system |
epss |
| scoring_elements |
0.8939 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.04747 |
| scoring_system |
epss |
| scoring_elements |
0.89426 |
| published_at |
2026-04-13T12:55:00Z |
|
| 2 |
| value |
0.04747 |
| scoring_system |
epss |
| scoring_elements |
0.8943 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.04747 |
| scoring_system |
epss |
| scoring_elements |
0.89432 |
| published_at |
2026-04-11T12:55:00Z |
|
| 4 |
| value |
0.04747 |
| scoring_system |
epss |
| scoring_elements |
0.89423 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.04747 |
| scoring_system |
epss |
| scoring_elements |
0.89419 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.04747 |
| scoring_system |
epss |
| scoring_elements |
0.89403 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.04747 |
| scoring_system |
epss |
| scoring_elements |
0.89401 |
| published_at |
2026-04-04T12:55:00Z |
|
| 8 |
| value |
0.04747 |
| scoring_system |
epss |
| scoring_elements |
0.89385 |
| published_at |
2026-04-01T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-4966 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@1.6.7 |
| purl |
pkg:pypi/ansible@1.6.7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 8 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 9 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 10 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 11 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 12 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 13 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 14 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 15 |
| vulnerability |
VCID-hfxe-jjf5-nqd1 |
|
| 16 |
| vulnerability |
VCID-hnjw-vehk-2fdd |
|
| 17 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 18 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 19 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 20 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 21 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 22 |
| vulnerability |
VCID-q4q1-aueh-sub2 |
|
| 23 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 24 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 25 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 26 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 27 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 28 |
| vulnerability |
VCID-s1r4-29kw-5kbg |
|
| 29 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 30 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 31 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 32 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 33 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 34 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 35 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 36 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 37 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 38 |
| vulnerability |
VCID-yc8n-wxb4-1uaz |
|
| 39 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 40 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 41 |
| vulnerability |
VCID-ynmp-3yfy-sfc1 |
|
| 42 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 43 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 44 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@1.6.7 |
|
|
| aliases |
CVE-2014-4966, GHSA-wqq5-c89p-3wc3, PYSEC-2020-204
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-8pn7-4k42-6qeb |
|
| 7 |
| url |
VCID-ae1r-yq1g-rkem |
| vulnerability_id |
VCID-ae1r-yq1g-rkem |
| summary |
A flaw was found in Ansible 2.7.17 and prior, 2.8.9 and prior, and 2.9.6 and prior when using the Extract-Zip function from the win_unzip module as the extracted file(s) are not checked if they belong to the destination folder. An attacker could take advantage of this flaw by crafting an archive anywhere in the file system, using a path traversal. This issue is fixed in 2.10. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-1737 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30802 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30848 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30983 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.3089 |
| published_at |
2026-04-11T12:55:00Z |
|
| 4 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30889 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30858 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.308 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30936 |
| published_at |
2026-04-02T12:55:00Z |
|
| 8 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30807 |
| published_at |
2026-04-01T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-1737 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
| reference_url |
https://github.com/samdoran/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
8.5 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/samdoran/ansible |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.7.17 |
| purl |
pkg:pypi/ansible@2.7.17 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 8 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 9 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 10 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 11 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 12 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 13 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 14 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 15 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 16 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 17 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 18 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 19 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 20 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 21 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 22 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.17 |
|
| 1 |
| url |
pkg:pypi/ansible@2.8.0a1 |
| purl |
pkg:pypi/ansible@2.8.0a1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 3 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 4 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 5 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 11 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 12 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 13 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 14 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 15 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 16 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 17 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 18 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 19 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 20 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 21 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 22 |
| vulnerability |
VCID-nukv-kkws-xkb1 |
|
| 23 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 24 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 25 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 26 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 27 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 28 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 29 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 30 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 31 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 32 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 33 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 34 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 35 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 36 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 37 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.0a1 |
|
| 2 |
| url |
pkg:pypi/ansible@2.8.9 |
| purl |
pkg:pypi/ansible@2.8.9 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 5 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 6 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 7 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 8 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 9 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 10 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 11 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 12 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 13 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 14 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 15 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 16 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 17 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 18 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 19 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 20 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 21 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 22 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 23 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 24 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 25 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 26 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 27 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 28 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.9 |
|
| 3 |
| url |
pkg:pypi/ansible@2.9.6 |
| purl |
pkg:pypi/ansible@2.9.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3jej-4jyp-cqbt |
|
| 1 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 2 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 8 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 9 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 10 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 11 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 12 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 13 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 14 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 15 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 16 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 17 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 18 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 19 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 20 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 21 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 22 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 23 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 24 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 25 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 26 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 27 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 28 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.6 |
|
|
| aliases |
CVE-2020-1737, GHSA-893h-35v4-mxqx, PYSEC-2020-9
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ae1r-yq1g-rkem |
|
| 8 |
| url |
VCID-atun-stks-4kcb |
| vulnerability_id |
VCID-atun-stks-4kcb |
| summary |
Insertion of Sensitive Information into Log File
A flaw was found in ansible module where credentials are disclosed in the console log by default and not protected by the security feature when using the bitbucket_pipeline_variable module. This flaw allows an attacker to steal bitbucket_pipeline credentials. The highest threat from this vulnerability is to confidentiality. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20180 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11284 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11312 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11345 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11339 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11285 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11204 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11412 |
| published_at |
2026-04-04T12:55:00Z |
|
| 7 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11355 |
| published_at |
2026-04-02T12:55:00Z |
|
| 8 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11208 |
| published_at |
2026-04-01T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20180 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.8.19 |
| purl |
pkg:pypi/ansible@2.8.19 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 8 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 9 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 10 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 11 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 12 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 13 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 14 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 15 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.19 |
|
| 1 |
| url |
pkg:pypi/ansible@2.9.18 |
| purl |
pkg:pypi/ansible@2.9.18 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 3 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 4 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 5 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 6 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 7 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 8 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 9 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 10 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.18 |
|
|
| aliases |
CVE-2021-20180, GHSA-fh5v-5f35-2rv2
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-atun-stks-4kcb |
|
| 9 |
| url |
VCID-axc3-wcsk-q3eg |
| vulnerability_id |
VCID-axc3-wcsk-q3eg |
| summary |
A flaw was found in Ansible, where a user's controller is vulnerable to template injection. This issue can occur through facts used in the template if the user is trying to put templates in multi-line YAML strings and the facts being handled do not routinely include special template characters. This flaw allows attackers to perform command injection, which discloses sensitive information. The highest threat from this vulnerability is to confidentiality and integrity. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-3583 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00319 |
| scoring_system |
epss |
| scoring_elements |
0.5489 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00319 |
| scoring_system |
epss |
| scoring_elements |
0.54913 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00319 |
| scoring_system |
epss |
| scoring_elements |
0.54931 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00319 |
| scoring_system |
epss |
| scoring_elements |
0.54919 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00319 |
| scoring_system |
epss |
| scoring_elements |
0.54804 |
| published_at |
2026-04-01T12:55:00Z |
|
| 5 |
| value |
0.00319 |
| scoring_system |
epss |
| scoring_elements |
0.5487 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00319 |
| scoring_system |
epss |
| scoring_elements |
0.54901 |
| published_at |
2026-04-04T12:55:00Z |
|
| 7 |
| value |
0.00319 |
| scoring_system |
epss |
| scoring_elements |
0.54875 |
| published_at |
2026-04-02T12:55:00Z |
|
| 8 |
| value |
0.00319 |
| scoring_system |
epss |
| scoring_elements |
0.5492 |
| published_at |
2026-04-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-3583 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N |
|
| 1 |
| value |
8.6 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-3583, GHSA-2pfh-q76x-gwvm, PYSEC-2021-358
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-axc3-wcsk-q3eg |
|
| 10 |
| url |
VCID-b2r5-fb4m-jbcr |
| vulnerability_id |
VCID-b2r5-fb4m-jbcr |
| summary |
Ansible before 1.2.1 makes it easier for remote attackers to conduct man-in-the-middle attacks by leveraging failure to cache SSH host keys. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2013-2233 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0035 |
| scoring_system |
epss |
| scoring_elements |
0.57471 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.0035 |
| scoring_system |
epss |
| scoring_elements |
0.57499 |
| published_at |
2026-04-13T12:55:00Z |
|
| 2 |
| value |
0.0035 |
| scoring_system |
epss |
| scoring_elements |
0.57518 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.0035 |
| scoring_system |
epss |
| scoring_elements |
0.57541 |
| published_at |
2026-04-11T12:55:00Z |
|
| 4 |
| value |
0.0035 |
| scoring_system |
epss |
| scoring_elements |
0.57525 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.0035 |
| scoring_system |
epss |
| scoring_elements |
0.57522 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.0035 |
| scoring_system |
epss |
| scoring_elements |
0.57469 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.0035 |
| scoring_system |
epss |
| scoring_elements |
0.57388 |
| published_at |
2026-04-01T12:55:00Z |
|
| 8 |
| value |
0.0035 |
| scoring_system |
epss |
| scoring_elements |
0.57492 |
| published_at |
2026-04-04T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2013-2233 |
|
| 1 |
|
| 2 |
|
| 3 |
| reference_url |
https://github.com/advisories/GHSA-9x6q-5423-w5v9 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.4 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N |
|
| 1 |
| value |
CRITICAL |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
9.1 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-9x6q-5423-w5v9 |
|
| 4 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.4 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N |
|
| 1 |
| value |
9.1 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 5 |
|
| 6 |
|
| 7 |
| reference_url |
https://www.ansible.com/security |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.4 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N |
|
| 1 |
| value |
9.1 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://www.ansible.com/security |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2013-2233 |
| reference_id |
CVE-2013-2233 |
| reference_type |
|
| scores |
| 0 |
| value |
5.8 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:M/Au:N/C:P/I:P/A:N |
|
| 1 |
| value |
7.4 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N |
|
| 2 |
| value |
7.4 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N |
|
| 3 |
| value |
9.1 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N |
|
| 4 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2013-2233 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@1.2.1 |
| purl |
pkg:pypi/ansible@1.2.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2v57-zem6-47hq |
|
| 1 |
| vulnerability |
VCID-4b5u-b82x-zkc5 |
|
| 2 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 3 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 4 |
| vulnerability |
VCID-7sp5-368w-w3fd |
|
| 5 |
| vulnerability |
VCID-8pn7-4k42-6qeb |
|
| 6 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 7 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 8 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 9 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 10 |
| vulnerability |
VCID-bc3y-qwxc-p3dx |
|
| 11 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 12 |
| vulnerability |
VCID-c22m-1buy-3uc5 |
|
| 13 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 14 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 15 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 16 |
| vulnerability |
VCID-dtc3-3bxm-fkcg |
|
| 17 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 18 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 19 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 20 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 21 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 22 |
| vulnerability |
VCID-hfxe-jjf5-nqd1 |
|
| 23 |
| vulnerability |
VCID-hnjw-vehk-2fdd |
|
| 24 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 25 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 26 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 27 |
| vulnerability |
VCID-jwsu-7znb-kueg |
|
| 28 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 29 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 30 |
| vulnerability |
VCID-q4q1-aueh-sub2 |
|
| 31 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 32 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 33 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 34 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 35 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 36 |
| vulnerability |
VCID-rsry-fw45-9yev |
|
| 37 |
| vulnerability |
VCID-s1r4-29kw-5kbg |
|
| 38 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 39 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 40 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 41 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 42 |
| vulnerability |
VCID-vdyk-rcxz-z7an |
|
| 43 |
| vulnerability |
VCID-w6be-213x-1yh3 |
|
| 44 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 45 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 46 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 47 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 48 |
| vulnerability |
VCID-xak4-qbwg-z3b7 |
|
| 49 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 50 |
| vulnerability |
VCID-yc8n-wxb4-1uaz |
|
| 51 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 52 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 53 |
| vulnerability |
VCID-ynmp-3yfy-sfc1 |
|
| 54 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 55 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 56 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@1.2.1 |
|
|
| aliases |
CVE-2013-2233, GHSA-9x6q-5423-w5v9, PYSEC-2018-36
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-b2r5-fb4m-jbcr |
|
| 11 |
| url |
VCID-b8zs-br97-57av |
| vulnerability_id |
VCID-b8zs-br97-57av |
| summary |
A flaw was found in Ansible 2.7.16 and prior, 2.8.8 and prior, and 2.9.5 and prior when a password is set with the argument "password" of svn module, it is used on svn command line, disclosing to other users within the same node. An attacker could take advantage by reading the cmdline file from that particular PID on the procfs. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-1739 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00045 |
| scoring_system |
epss |
| scoring_elements |
0.13748 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00045 |
| scoring_system |
epss |
| scoring_elements |
0.13797 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00045 |
| scoring_system |
epss |
| scoring_elements |
0.13834 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00045 |
| scoring_system |
epss |
| scoring_elements |
0.13865 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00045 |
| scoring_system |
epss |
| scoring_elements |
0.13815 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00045 |
| scoring_system |
epss |
| scoring_elements |
0.1378 |
| published_at |
2026-04-01T12:55:00Z |
|
| 6 |
| value |
0.00045 |
| scoring_system |
epss |
| scoring_elements |
0.13874 |
| published_at |
2026-04-02T12:55:00Z |
|
| 7 |
| value |
0.00045 |
| scoring_system |
epss |
| scoring_elements |
0.1393 |
| published_at |
2026-04-04T12:55:00Z |
|
| 8 |
| value |
0.00045 |
| scoring_system |
epss |
| scoring_elements |
0.13732 |
| published_at |
2026-04-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-1739 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
3.9 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N |
|
| 1 |
| value |
2.4 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
LOW |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2020-1739 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
3.3 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:L/AC:M/Au:N/C:P/I:P/A:N |
|
| 1 |
| value |
3.9 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N |
|
| 2 |
| value |
2.4 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
LOW |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2020-1739 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
| 54 |
|
| 55 |
|
| 56 |
|
| 57 |
|
| 58 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.7.17 |
| purl |
pkg:pypi/ansible@2.7.17 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 8 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 9 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 10 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 11 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 12 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 13 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 14 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 15 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 16 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 17 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 18 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 19 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 20 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 21 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 22 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.17 |
|
| 1 |
| url |
pkg:pypi/ansible@2.8.0a1 |
| purl |
pkg:pypi/ansible@2.8.0a1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 3 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 4 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 5 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 11 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 12 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 13 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 14 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 15 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 16 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 17 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 18 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 19 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 20 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 21 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 22 |
| vulnerability |
VCID-nukv-kkws-xkb1 |
|
| 23 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 24 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 25 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 26 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 27 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 28 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 29 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 30 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 31 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 32 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 33 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 34 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 35 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 36 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 37 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.0a1 |
|
| 2 |
| url |
pkg:pypi/ansible@2.8.9 |
| purl |
pkg:pypi/ansible@2.8.9 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 5 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 6 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 7 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 8 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 9 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 10 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 11 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 12 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 13 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 14 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 15 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 16 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 17 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 18 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 19 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 20 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 21 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 22 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 23 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 24 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 25 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 26 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 27 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 28 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.9 |
|
| 3 |
| url |
pkg:pypi/ansible@2.8.11 |
| purl |
pkg:pypi/ansible@2.8.11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 8 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 9 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 10 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 11 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 12 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 13 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 14 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 15 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 16 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 17 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 18 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 19 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 20 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 21 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.11 |
|
| 4 |
| url |
pkg:pypi/ansible@2.9.6 |
| purl |
pkg:pypi/ansible@2.9.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3jej-4jyp-cqbt |
|
| 1 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 2 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 8 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 9 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 10 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 11 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 12 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 13 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 14 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 15 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 16 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 17 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 18 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 19 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 20 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 21 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 22 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 23 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 24 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 25 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 26 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 27 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 28 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.6 |
|
| 5 |
| url |
pkg:pypi/ansible@2.9.7 |
| purl |
pkg:pypi/ansible@2.9.7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 8 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 9 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 10 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 11 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 12 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 13 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 14 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 15 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 16 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 17 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 18 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 19 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.7 |
|
|
| aliases |
CVE-2020-1739, GHSA-923p-fr2c-g5m2, PYSEC-2020-11
|
| risk_score |
1.8 |
| exploitability |
0.5 |
| weighted_severity |
3.5 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-b8zs-br97-57av |
|
| 12 |
| url |
VCID-bc3y-qwxc-p3dx |
| vulnerability_id |
VCID-bc3y-qwxc-p3dx |
| summary |
Ansible prior to 1.5.4 mishandles the evaluation of some strings. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-2686 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00376 |
| scoring_system |
epss |
| scoring_elements |
0.59159 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00376 |
| scoring_system |
epss |
| scoring_elements |
0.59148 |
| published_at |
2026-04-07T12:55:00Z |
|
| 2 |
| value |
0.00376 |
| scoring_system |
epss |
| scoring_elements |
0.59183 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00376 |
| scoring_system |
epss |
| scoring_elements |
0.59086 |
| published_at |
2026-04-01T12:55:00Z |
|
| 4 |
| value |
0.00376 |
| scoring_system |
epss |
| scoring_elements |
0.59195 |
| published_at |
2026-04-13T12:55:00Z |
|
| 5 |
| value |
0.00376 |
| scoring_system |
epss |
| scoring_elements |
0.59214 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00376 |
| scoring_system |
epss |
| scoring_elements |
0.59232 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00376 |
| scoring_system |
epss |
| scoring_elements |
0.59212 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.00376 |
| scoring_system |
epss |
| scoring_elements |
0.59199 |
| published_at |
2026-04-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-2686 |
|
| 1 |
|
| 2 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N |
|
| 1 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@1.5.4 |
| purl |
pkg:pypi/ansible@1.5.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4b5u-b82x-zkc5 |
|
| 1 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 2 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 3 |
| vulnerability |
VCID-7sp5-368w-w3fd |
|
| 4 |
| vulnerability |
VCID-8pn7-4k42-6qeb |
|
| 5 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 6 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 7 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 8 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 9 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 10 |
| vulnerability |
VCID-c22m-1buy-3uc5 |
|
| 11 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 12 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 13 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 14 |
| vulnerability |
VCID-dtc3-3bxm-fkcg |
|
| 15 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 16 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 17 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 18 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 19 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 20 |
| vulnerability |
VCID-hfxe-jjf5-nqd1 |
|
| 21 |
| vulnerability |
VCID-hnjw-vehk-2fdd |
|
| 22 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 23 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 24 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 25 |
| vulnerability |
VCID-jwsu-7znb-kueg |
|
| 26 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 27 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 28 |
| vulnerability |
VCID-q4q1-aueh-sub2 |
|
| 29 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 30 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 31 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 32 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 33 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 34 |
| vulnerability |
VCID-s1r4-29kw-5kbg |
|
| 35 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 36 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 37 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 38 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 39 |
| vulnerability |
VCID-w6be-213x-1yh3 |
|
| 40 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 41 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 42 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 43 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 44 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 45 |
| vulnerability |
VCID-yc8n-wxb4-1uaz |
|
| 46 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 47 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 48 |
| vulnerability |
VCID-ynmp-3yfy-sfc1 |
|
| 49 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 50 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 51 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@1.5.4 |
|
|
| aliases |
CVE-2014-2686, GHSA-49m5-2838-q2rv, PYSEC-2020-198
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-bc3y-qwxc-p3dx |
|
| 13 |
| url |
VCID-c1xg-s3kx-gkft |
| vulnerability_id |
VCID-c1xg-s3kx-gkft |
| summary |
A flaw was found in Ansible Engine when a file is moved using atomic_move primitive as the file mode cannot be specified. This sets the destination files world-readable if the destination file does not exist and if the file exists, the file could be changed to have less restrictive permissions before the move. This could lead to the disclosure of sensitive data. All versions in 2.7.x, 2.8.x and 2.9.x branches are believed to be vulnerable. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-1736 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0004 |
| scoring_system |
epss |
| scoring_elements |
0.12221 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.0004 |
| scoring_system |
epss |
| scoring_elements |
0.12184 |
| published_at |
2026-04-07T12:55:00Z |
|
| 2 |
| value |
0.0004 |
| scoring_system |
epss |
| scoring_elements |
0.12383 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.0004 |
| scoring_system |
epss |
| scoring_elements |
0.12337 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.00045 |
| scoring_system |
epss |
| scoring_elements |
0.13875 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.00045 |
| scoring_system |
epss |
| scoring_elements |
0.13918 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00045 |
| scoring_system |
epss |
| scoring_elements |
0.13791 |
| published_at |
2026-04-13T12:55:00Z |
|
| 7 |
| value |
0.00045 |
| scoring_system |
epss |
| scoring_elements |
0.13866 |
| published_at |
2026-04-08T12:55:00Z |
|
| 8 |
| value |
0.00045 |
| scoring_system |
epss |
| scoring_elements |
0.13839 |
| published_at |
2026-04-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-1736 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
| reference_url |
https://github.com/advisories/GHSA-x7jh-595q-wq82 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
3.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
4.8 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-x7jh-595q-wq82 |
|
| 6 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
3.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
|
| 1 |
| value |
4.8 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2020-1736 |
| reference_id |
CVE-2020-1736 |
| reference_type |
|
| scores |
| 0 |
| value |
2.1 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:L/AC:L/Au:N/C:P/I:N/A:N |
|
| 1 |
| value |
2.2 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:N/A:N |
|
| 2 |
| value |
3.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
|
| 3 |
| value |
4.8 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 4 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2020-1736 |
|
| 25 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.7.17 |
| purl |
pkg:pypi/ansible@2.7.17 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 8 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 9 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 10 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 11 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 12 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 13 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 14 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 15 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 16 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 17 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 18 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 19 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 20 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 21 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 22 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.17 |
|
| 1 |
| url |
pkg:pypi/ansible@2.8.9 |
| purl |
pkg:pypi/ansible@2.8.9 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 5 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 6 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 7 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 8 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 9 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 10 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 11 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 12 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 13 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 14 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 15 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 16 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 17 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 18 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 19 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 20 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 21 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 22 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 23 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 24 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 25 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 26 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 27 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 28 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.9 |
|
| 2 |
| url |
pkg:pypi/ansible@2.9.6 |
| purl |
pkg:pypi/ansible@2.9.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3jej-4jyp-cqbt |
|
| 1 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 2 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 8 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 9 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 10 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 11 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 12 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 13 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 14 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 15 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 16 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 17 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 18 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 19 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 20 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 21 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 22 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 23 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 24 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 25 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 26 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 27 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 28 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.6 |
|
| 3 |
|
|
| aliases |
CVE-2020-1736, GHSA-x7jh-595q-wq82, PYSEC-2020-8
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-c1xg-s3kx-gkft |
|
| 14 |
| url |
VCID-c22m-1buy-3uc5 |
| vulnerability_id |
VCID-c22m-1buy-3uc5 |
| summary |
The vault subsystem in Ansible before 1.5.5 does not set the umask before creation or modification of a vault file, which allows local users to obtain sensitive key information by reading a file. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-4658 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30857 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30902 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30944 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30941 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.3091 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30852 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.31034 |
| published_at |
2026-04-04T12:55:00Z |
|
| 7 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30987 |
| published_at |
2026-04-02T12:55:00Z |
|
| 8 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30861 |
| published_at |
2026-04-01T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-4658 |
|
| 2 |
|
| 3 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
6.8 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@1.5.5 |
| purl |
pkg:pypi/ansible@1.5.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4b5u-b82x-zkc5 |
|
| 1 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 2 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 3 |
| vulnerability |
VCID-7sp5-368w-w3fd |
|
| 4 |
| vulnerability |
VCID-8pn7-4k42-6qeb |
|
| 5 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 6 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 7 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 8 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 9 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 10 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 11 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 12 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 13 |
| vulnerability |
VCID-dtc3-3bxm-fkcg |
|
| 14 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 15 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 16 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 17 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 18 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 19 |
| vulnerability |
VCID-hfxe-jjf5-nqd1 |
|
| 20 |
| vulnerability |
VCID-hnjw-vehk-2fdd |
|
| 21 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 22 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 23 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 24 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 25 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 26 |
| vulnerability |
VCID-q4q1-aueh-sub2 |
|
| 27 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 28 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 29 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 30 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 31 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 32 |
| vulnerability |
VCID-s1r4-29kw-5kbg |
|
| 33 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 34 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 35 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 36 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 37 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 38 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 39 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 40 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 41 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 42 |
| vulnerability |
VCID-yc8n-wxb4-1uaz |
|
| 43 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 44 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 45 |
| vulnerability |
VCID-ynmp-3yfy-sfc1 |
|
| 46 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 47 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 48 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@1.5.5 |
|
|
| aliases |
CVE-2014-4658, GHSA-5g4v-2pc6-4hh4, PYSEC-2020-200
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-c22m-1buy-3uc5 |
|
| 15 |
| url |
VCID-d4ka-dk4p-kfhb |
| vulnerability_id |
VCID-d4ka-dk4p-kfhb |
| summary |
A flaw was found in the solaris_zone module from the Ansible Community modules. When setting the name for the zone on the Solaris host, the zone name is checked by listing the process with the 'ps' bare command on the remote machine. An attacker could take advantage of this flaw by crafting the name of the zone and executing arbitrary commands in the remote host. Ansible Engine 2.7.15, 2.8.7, and 2.9.2 as well as previous versions are affected. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2019-14904 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00041 |
| scoring_system |
epss |
| scoring_elements |
0.1244 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00041 |
| scoring_system |
epss |
| scoring_elements |
0.12481 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00041 |
| scoring_system |
epss |
| scoring_elements |
0.1252 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00041 |
| scoring_system |
epss |
| scoring_elements |
0.12549 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00041 |
| scoring_system |
epss |
| scoring_elements |
0.12498 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00041 |
| scoring_system |
epss |
| scoring_elements |
0.12417 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00041 |
| scoring_system |
epss |
| scoring_elements |
0.12609 |
| published_at |
2026-04-04T12:55:00Z |
|
| 7 |
| value |
0.00041 |
| scoring_system |
epss |
| scoring_elements |
0.12567 |
| published_at |
2026-04-02T12:55:00Z |
|
| 8 |
| value |
0.00041 |
| scoring_system |
epss |
| scoring_elements |
0.12463 |
| published_at |
2026-04-01T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2019-14904 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:L |
|
| 1 |
| value |
8.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:L/SC:H/SI:L/SA:L |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.7.15 |
| purl |
pkg:pypi/ansible@2.7.15 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 3 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 4 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 5 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 11 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 12 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 13 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 14 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 15 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 16 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 17 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 18 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 19 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 20 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 21 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 22 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 23 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 24 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 25 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 26 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 27 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 28 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 29 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 30 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 31 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 32 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 33 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.15 |
|
| 1 |
| url |
pkg:pypi/ansible@2.7.16 |
| purl |
pkg:pypi/ansible@2.7.16 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 8 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 9 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 10 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 11 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 12 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 13 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 14 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 15 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 16 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 17 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 18 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 19 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 20 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 21 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 22 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 23 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 24 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 25 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 26 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 27 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 28 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 29 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 30 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.16 |
|
| 2 |
| url |
pkg:pypi/ansible@2.8.7 |
| purl |
pkg:pypi/ansible@2.8.7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 3 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 4 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 5 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 11 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 12 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 13 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 14 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 15 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 16 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 17 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 18 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 19 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 20 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 21 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 22 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 23 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 24 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 25 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 26 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 27 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 28 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 29 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 30 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 31 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 32 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.7 |
|
| 3 |
| url |
pkg:pypi/ansible@2.8.8 |
| purl |
pkg:pypi/ansible@2.8.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 8 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 9 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 10 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 11 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 12 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 13 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 14 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 15 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 16 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 17 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 18 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 19 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 20 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 21 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 22 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 23 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 24 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 25 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 26 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 27 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 28 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 29 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.8 |
|
| 4 |
| url |
pkg:pypi/ansible@2.9.2 |
| purl |
pkg:pypi/ansible@2.9.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3jej-4jyp-cqbt |
|
| 1 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 2 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 3 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 4 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 5 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 6 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 7 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 8 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 9 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 10 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 11 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 12 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 13 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 14 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 15 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 16 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 17 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 18 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 19 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 20 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 21 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 22 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 23 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 24 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 25 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 26 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 27 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 28 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 29 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 30 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 31 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 32 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.2 |
|
| 5 |
| url |
pkg:pypi/ansible@2.9.3 |
| purl |
pkg:pypi/ansible@2.9.3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3jej-4jyp-cqbt |
|
| 1 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 2 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 3 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 4 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 5 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 9 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 10 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 11 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 12 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 13 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 14 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 15 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 16 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 17 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 18 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 19 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 20 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 21 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 22 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 23 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 24 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 25 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 26 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 27 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 28 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 29 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 30 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.3 |
|
|
| aliases |
CVE-2019-14904, GHSA-gwr8-5j83-483c, PYSEC-2020-161
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-d4ka-dk4p-kfhb |
|
| 16 |
| url |
VCID-d7ez-s7qb-p3ay |
| vulnerability_id |
VCID-d7ez-s7qb-p3ay |
| summary |
A flaw was found in Ansible Engine when the module package or service is used and the parameter 'use' is not specified. If a previous task is executed with a malicious user, the module sent can be selected by the attacker using the ansible facts file. All versions in 2.7.x, 2.8.x and 2.9.x branches are believed to be vulnerable. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-1738 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00139 |
| scoring_system |
epss |
| scoring_elements |
0.33988 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00139 |
| scoring_system |
epss |
| scoring_elements |
0.34012 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00139 |
| scoring_system |
epss |
| scoring_elements |
0.34055 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00139 |
| scoring_system |
epss |
| scoring_elements |
0.34056 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00139 |
| scoring_system |
epss |
| scoring_elements |
0.34025 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00139 |
| scoring_system |
epss |
| scoring_elements |
0.33983 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00139 |
| scoring_system |
epss |
| scoring_elements |
0.34123 |
| published_at |
2026-04-04T12:55:00Z |
|
| 7 |
| value |
0.00139 |
| scoring_system |
epss |
| scoring_elements |
0.34092 |
| published_at |
2026-04-02T12:55:00Z |
|
| 8 |
| value |
0.00139 |
| scoring_system |
epss |
| scoring_elements |
0.33754 |
| published_at |
2026-04-01T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-1738 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
3.9 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L |
|
| 1 |
| value |
1.0 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:N/VI:N/VA:N/SC:N/SI:L/SA:L |
|
| 2 |
| value |
LOW |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2020-1738 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
2.6 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:L/AC:H/Au:N/C:N/I:P/A:P |
|
| 1 |
| value |
3.9 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L |
|
| 2 |
| value |
1.0 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:N/VI:N/VA:N/SC:N/SI:L/SA:L |
|
| 3 |
| value |
LOW |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2020-1738 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.7.17 |
| purl |
pkg:pypi/ansible@2.7.17 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 8 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 9 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 10 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 11 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 12 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 13 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 14 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 15 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 16 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 17 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 18 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 19 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 20 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 21 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 22 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.17 |
|
| 1 |
| url |
pkg:pypi/ansible@2.8.0a1 |
| purl |
pkg:pypi/ansible@2.8.0a1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 3 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 4 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 5 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 11 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 12 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 13 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 14 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 15 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 16 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 17 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 18 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 19 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 20 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 21 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 22 |
| vulnerability |
VCID-nukv-kkws-xkb1 |
|
| 23 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 24 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 25 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 26 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 27 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 28 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 29 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 30 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 31 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 32 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 33 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 34 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 35 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 36 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 37 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.0a1 |
|
| 2 |
| url |
pkg:pypi/ansible@2.8.9 |
| purl |
pkg:pypi/ansible@2.8.9 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 5 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 6 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 7 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 8 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 9 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 10 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 11 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 12 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 13 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 14 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 15 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 16 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 17 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 18 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 19 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 20 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 21 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 22 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 23 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 24 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 25 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 26 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 27 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 28 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.9 |
|
| 3 |
| url |
pkg:pypi/ansible@2.8.11 |
| purl |
pkg:pypi/ansible@2.8.11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 8 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 9 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 10 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 11 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 12 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 13 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 14 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 15 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 16 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 17 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 18 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 19 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 20 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 21 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.11 |
|
| 4 |
| url |
pkg:pypi/ansible@2.9.6 |
| purl |
pkg:pypi/ansible@2.9.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3jej-4jyp-cqbt |
|
| 1 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 2 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 8 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 9 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 10 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 11 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 12 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 13 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 14 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 15 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 16 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 17 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 18 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 19 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 20 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 21 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 22 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 23 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 24 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 25 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 26 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 27 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 28 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.6 |
|
| 5 |
| url |
pkg:pypi/ansible@2.9.7 |
| purl |
pkg:pypi/ansible@2.9.7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 8 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 9 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 10 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 11 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 12 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 13 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 14 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 15 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 16 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 17 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 18 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 19 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.7 |
|
|
| aliases |
CVE-2020-1738, GHSA-f85h-23mf-2fwh, PYSEC-2020-10
|
| risk_score |
1.8 |
| exploitability |
0.5 |
| weighted_severity |
3.5 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-d7ez-s7qb-p3ay |
|
| 17 |
| url |
VCID-drt9-vx5r-akgm |
| vulnerability_id |
VCID-drt9-vx5r-akgm |
| summary |
Ansible fetch module before versions 2.5.15, 2.6.14, 2.7.8 has a path traversal vulnerability which allows copying and overwriting files outside of the specified destination in the local ansible controller host, by not restricting an absolute path. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2019-3828 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08479 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08511 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08518 |
| published_at |
2026-04-09T12:55:00Z |
|
| 3 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08499 |
| published_at |
2026-04-08T12:55:00Z |
|
| 4 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08426 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08508 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08454 |
| published_at |
2026-04-02T12:55:00Z |
|
| 7 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08411 |
| published_at |
2026-04-01T12:55:00Z |
|
| 8 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08494 |
| published_at |
2026-04-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2019-3828 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.2 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N |
|
| 1 |
| value |
2.4 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:P/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N |
|
| 2 |
| value |
LOW |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
| reference_url |
https://usn.ubuntu.com/4072-1 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.2 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N |
|
| 1 |
| value |
2.4 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:P/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N |
|
| 2 |
| value |
LOW |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://usn.ubuntu.com/4072-1 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2019-3828 |
| reference_id |
CVE-2019-3828 |
| reference_type |
|
| scores |
| 0 |
| value |
3.3 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:L/AC:M/Au:N/C:P/I:P/A:N |
|
| 1 |
| value |
4.2 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:L/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N |
|
| 2 |
| value |
4.2 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N |
|
| 3 |
| value |
2.4 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:P/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N |
|
| 4 |
| value |
LOW |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2019-3828 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.5.15 |
| purl |
pkg:pypi/ansible@2.5.15 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 8 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 9 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 10 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 11 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 12 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 13 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 14 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 15 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 16 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 17 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 18 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 19 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 20 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 21 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 22 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 23 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 24 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 25 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 26 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 27 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 28 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 29 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 30 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 31 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 32 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.5.15 |
|
| 1 |
| url |
pkg:pypi/ansible@2.6.14 |
| purl |
pkg:pypi/ansible@2.6.14 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-ckt2-us5z-pyef |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 11 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 12 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 13 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 14 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 15 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 16 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 17 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 18 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 19 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 20 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 21 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 22 |
| vulnerability |
VCID-swpr-3qae-d7fe |
|
| 23 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 24 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 25 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 26 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 27 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 28 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 29 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 30 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 31 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 32 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 33 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 34 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.6.14 |
|
| 2 |
| url |
pkg:pypi/ansible@2.7.8 |
| purl |
pkg:pypi/ansible@2.7.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 3 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 4 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 5 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-ckt2-us5z-pyef |
|
| 9 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 10 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 11 |
| vulnerability |
VCID-dagf-buer-4ffr |
|
| 12 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 13 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 14 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 15 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 16 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 17 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 18 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 19 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 20 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 21 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 22 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 23 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 24 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 25 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 26 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 27 |
| vulnerability |
VCID-swpr-3qae-d7fe |
|
| 28 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 29 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 30 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 31 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 32 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 33 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 34 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 35 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 36 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 37 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 38 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 39 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 40 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 41 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.8 |
|
|
| aliases |
CVE-2019-3828, GHSA-74vq-h4q8-x6jv, PYSEC-2019-5
|
| risk_score |
1.9 |
| exploitability |
0.5 |
| weighted_severity |
3.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-drt9-vx5r-akgm |
|
| 18 |
| url |
VCID-dtc3-3bxm-fkcg |
| vulnerability_id |
VCID-dtc3-3bxm-fkcg |
| summary |
The user module in ansible before 1.6.6 allows remote authenticated users to execute arbitrary commands. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-3498 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00548 |
| scoring_system |
epss |
| scoring_elements |
0.67824 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00548 |
| scoring_system |
epss |
| scoring_elements |
0.67886 |
| published_at |
2026-04-13T12:55:00Z |
|
| 2 |
| value |
0.00548 |
| scoring_system |
epss |
| scoring_elements |
0.67922 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.00548 |
| scoring_system |
epss |
| scoring_elements |
0.67935 |
| published_at |
2026-04-11T12:55:00Z |
|
| 4 |
| value |
0.00548 |
| scoring_system |
epss |
| scoring_elements |
0.67911 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.00548 |
| scoring_system |
epss |
| scoring_elements |
0.67898 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00548 |
| scoring_system |
epss |
| scoring_elements |
0.67867 |
| published_at |
2026-04-04T12:55:00Z |
|
| 7 |
| value |
0.00548 |
| scoring_system |
epss |
| scoring_elements |
0.67848 |
| published_at |
2026-04-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-3498 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
8.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@1.6.6 |
| purl |
pkg:pypi/ansible@1.6.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4b5u-b82x-zkc5 |
|
| 1 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 2 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 3 |
| vulnerability |
VCID-8pn7-4k42-6qeb |
|
| 4 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 5 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 6 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 7 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 8 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 9 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 10 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 11 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 12 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 13 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 14 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 15 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 16 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 17 |
| vulnerability |
VCID-hfxe-jjf5-nqd1 |
|
| 18 |
| vulnerability |
VCID-hnjw-vehk-2fdd |
|
| 19 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 20 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 21 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 22 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 23 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 24 |
| vulnerability |
VCID-q4q1-aueh-sub2 |
|
| 25 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 26 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 27 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 28 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 29 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 30 |
| vulnerability |
VCID-s1r4-29kw-5kbg |
|
| 31 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 32 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 33 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 34 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 35 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 36 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 37 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 38 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 39 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 40 |
| vulnerability |
VCID-yc8n-wxb4-1uaz |
|
| 41 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 42 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 43 |
| vulnerability |
VCID-ynmp-3yfy-sfc1 |
|
| 44 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 45 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 46 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@1.6.6 |
|
|
| aliases |
CVE-2014-3498, GHSA-4cvm-5776-jx9f, PYSEC-2017-2
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-dtc3-3bxm-fkcg |
|
| 19 |
| url |
VCID-e3z2-ydhb-gqfg |
| vulnerability_id |
VCID-e3z2-ydhb-gqfg |
| summary |
A flaw was found in the Ansible Engine 2.9.18, where sensitive info is not masked by default and is not protected by the no_log feature when using the sub-option feature of the basic.py module. This flaw allows an attacker to obtain sensitive information. The highest threat from this vulnerability is to confidentiality. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20228 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00149 |
| scoring_system |
epss |
| scoring_elements |
0.35396 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00149 |
| scoring_system |
epss |
| scoring_elements |
0.3542 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00149 |
| scoring_system |
epss |
| scoring_elements |
0.35463 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00149 |
| scoring_system |
epss |
| scoring_elements |
0.35454 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00149 |
| scoring_system |
epss |
| scoring_elements |
0.35429 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00149 |
| scoring_system |
epss |
| scoring_elements |
0.35383 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00149 |
| scoring_system |
epss |
| scoring_elements |
0.355 |
| published_at |
2026-04-04T12:55:00Z |
|
| 7 |
| value |
0.00149 |
| scoring_system |
epss |
| scoring_elements |
0.35276 |
| published_at |
2026-04-01T12:55:00Z |
|
| 8 |
| value |
0.00149 |
| scoring_system |
epss |
| scoring_elements |
0.35475 |
| published_at |
2026-04-02T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20228 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.0.0.1 |
| purl |
pkg:pypi/ansible@2.0.0.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 8 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 9 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 10 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 11 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 12 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 13 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 14 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 15 |
| vulnerability |
VCID-hfxe-jjf5-nqd1 |
|
| 16 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 17 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 18 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 19 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 20 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 21 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 22 |
| vulnerability |
VCID-q4q1-aueh-sub2 |
|
| 23 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 24 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 25 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 26 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 27 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 28 |
| vulnerability |
VCID-s1r4-29kw-5kbg |
|
| 29 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 30 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 31 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 32 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 33 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 34 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 35 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 36 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 37 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 38 |
| vulnerability |
VCID-yc8n-wxb4-1uaz |
|
| 39 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 40 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 41 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 42 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 43 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.0.0.1 |
|
| 1 |
| url |
pkg:pypi/ansible@2.8.19rc1 |
| purl |
pkg:pypi/ansible@2.8.19rc1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 8 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 9 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 10 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 11 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 12 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 13 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 14 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 15 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 16 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.19rc1 |
|
| 2 |
| url |
pkg:pypi/ansible@2.9.1 |
| purl |
pkg:pypi/ansible@2.9.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3jej-4jyp-cqbt |
|
| 1 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 2 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 3 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 4 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 5 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 6 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 7 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 8 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 9 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 10 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 11 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 12 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 13 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 14 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 15 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 16 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 17 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 18 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 19 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 20 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 21 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 22 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 23 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 24 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 25 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 26 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 27 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 28 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 29 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 30 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 31 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 32 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 33 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 34 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.1 |
|
| 3 |
| url |
pkg:pypi/ansible@2.9.18rc1 |
| purl |
pkg:pypi/ansible@2.9.18rc1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 8 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 9 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 10 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 11 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 12 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 13 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 14 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.18rc1 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| aliases |
CVE-2021-20228, GHSA-5rrg-rr89-x9mv, PYSEC-2021-1
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-e3z2-ydhb-gqfg |
|
| 20 |
| url |
VCID-ezaq-tqd3-4yd1 |
| vulnerability_id |
VCID-ezaq-tqd3-4yd1 |
| summary |
A security flaw was found in Ansible Engine, all Ansible 2.7.x versions prior to 2.7.17, all Ansible 2.8.x versions prior to 2.8.11 and all Ansible 2.9.x versions prior to 2.9.7, when managing kubernetes using the k8s module. Sensitive parameters such as passwords and tokens are passed to kubectl from the command line, not using an environment variable or an input configuration file. This will disclose passwords and tokens from process list and no_log directive from debug module would not have any effect making these secrets being disclosed on stdout and log files. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-1753 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00042 |
| scoring_system |
epss |
| scoring_elements |
0.1278 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00042 |
| scoring_system |
epss |
| scoring_elements |
0.12825 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00042 |
| scoring_system |
epss |
| scoring_elements |
0.12862 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00042 |
| scoring_system |
epss |
| scoring_elements |
0.12896 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00042 |
| scoring_system |
epss |
| scoring_elements |
0.12816 |
| published_at |
2026-04-01T12:55:00Z |
|
| 5 |
| value |
0.00042 |
| scoring_system |
epss |
| scoring_elements |
0.12766 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00042 |
| scoring_system |
epss |
| scoring_elements |
0.12964 |
| published_at |
2026-04-04T12:55:00Z |
|
| 7 |
| value |
0.00042 |
| scoring_system |
epss |
| scoring_elements |
0.12914 |
| published_at |
2026-04-02T12:55:00Z |
|
| 8 |
| value |
0.00042 |
| scoring_system |
epss |
| scoring_elements |
0.12845 |
| published_at |
2026-04-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-1753 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
| reference_url |
https://github.com/advisories/GHSA-86hp-cj9j-33vv |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
6.8 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-86hp-cj9j-33vv |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2020-1753 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
2.1 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:L/AC:L/Au:N/C:P/I:N/A:N |
|
| 1 |
| value |
5.0 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N |
|
| 2 |
| value |
5.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
|
| 3 |
| value |
6.8 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 4 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2020-1753 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.7.17 |
| purl |
pkg:pypi/ansible@2.7.17 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 8 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 9 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 10 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 11 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 12 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 13 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 14 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 15 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 16 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 17 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 18 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 19 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 20 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 21 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 22 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.17 |
|
| 1 |
| url |
pkg:pypi/ansible@2.7.18 |
| purl |
pkg:pypi/ansible@2.7.18 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 8 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 9 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 10 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 11 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 12 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 13 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 14 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 15 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 16 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 17 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 18 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 19 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 20 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.18 |
|
| 2 |
| url |
pkg:pypi/ansible@2.8.0a1 |
| purl |
pkg:pypi/ansible@2.8.0a1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 3 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 4 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 5 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 11 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 12 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 13 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 14 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 15 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 16 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 17 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 18 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 19 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 20 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 21 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 22 |
| vulnerability |
VCID-nukv-kkws-xkb1 |
|
| 23 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 24 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 25 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 26 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 27 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 28 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 29 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 30 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 31 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 32 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 33 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 34 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 35 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 36 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 37 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.0a1 |
|
| 3 |
| url |
pkg:pypi/ansible@2.8.9 |
| purl |
pkg:pypi/ansible@2.8.9 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 5 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 6 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 7 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 8 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 9 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 10 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 11 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 12 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 13 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 14 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 15 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 16 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 17 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 18 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 19 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 20 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 21 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 22 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 23 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 24 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 25 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 26 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 27 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 28 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.9 |
|
| 4 |
| url |
pkg:pypi/ansible@2.8.11 |
| purl |
pkg:pypi/ansible@2.8.11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 8 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 9 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 10 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 11 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 12 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 13 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 14 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 15 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 16 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 17 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 18 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 19 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 20 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 21 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.11 |
|
| 5 |
| url |
pkg:pypi/ansible@2.8.12 |
| purl |
pkg:pypi/ansible@2.8.12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 8 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 9 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 10 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 11 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 12 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 13 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 14 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 15 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 16 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 17 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 18 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 19 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.12 |
|
| 6 |
| url |
pkg:pypi/ansible@2.9.6 |
| purl |
pkg:pypi/ansible@2.9.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3jej-4jyp-cqbt |
|
| 1 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 2 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 8 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 9 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 10 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 11 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 12 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 13 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 14 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 15 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 16 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 17 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 18 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 19 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 20 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 21 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 22 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 23 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 24 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 25 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 26 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 27 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 28 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.6 |
|
| 7 |
| url |
pkg:pypi/ansible@2.9.7 |
| purl |
pkg:pypi/ansible@2.9.7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 8 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 9 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 10 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 11 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 12 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 13 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 14 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 15 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 16 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 17 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 18 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 19 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.7 |
|
|
| aliases |
CVE-2020-1753, GHSA-86hp-cj9j-33vv, PYSEC-2020-210
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ezaq-tqd3-4yd1 |
|
| 21 |
| url |
VCID-fetz-42jf-nqe8 |
| vulnerability_id |
VCID-fetz-42jf-nqe8 |
| summary |
An input validation vulnerability was found in Ansible's mysql_user module before 2.2.1.0, which may fail to correctly change a password in certain circumstances. Thus the previous password would still be active when it should have been changed. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-8647 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00171 |
| scoring_system |
epss |
| scoring_elements |
0.38395 |
| published_at |
2026-04-04T12:55:00Z |
|
| 1 |
| value |
0.00171 |
| scoring_system |
epss |
| scoring_elements |
0.38371 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00171 |
| scoring_system |
epss |
| scoring_elements |
0.38235 |
| published_at |
2026-04-01T12:55:00Z |
|
| 3 |
| value |
0.00171 |
| scoring_system |
epss |
| scoring_elements |
0.38337 |
| published_at |
2026-04-11T12:55:00Z |
|
| 4 |
| value |
0.00171 |
| scoring_system |
epss |
| scoring_elements |
0.38301 |
| published_at |
2026-04-12T12:55:00Z |
|
| 5 |
| value |
0.00171 |
| scoring_system |
epss |
| scoring_elements |
0.38276 |
| published_at |
2026-04-13T12:55:00Z |
|
| 6 |
| value |
0.00171 |
| scoring_system |
epss |
| scoring_elements |
0.38319 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00171 |
| scoring_system |
epss |
| scoring_elements |
0.38311 |
| published_at |
2026-04-08T12:55:00Z |
|
| 8 |
| value |
0.00171 |
| scoring_system |
epss |
| scoring_elements |
0.3826 |
| published_at |
2026-04-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-8647 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
| reference_url |
https://github.com/advisories/GHSA-x4cm-m36h-c6qj |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.9 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-x4cm-m36h-c6qj |
|
| 9 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.9 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N |
|
| 1 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.2.1.0 |
| purl |
pkg:pypi/ansible@2.2.1.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 8 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 9 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 10 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 11 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 12 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 13 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 14 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 15 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 16 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 17 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 18 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 19 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 20 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 21 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 22 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 23 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 24 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 25 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 26 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 27 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 28 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 29 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 30 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 31 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 32 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 33 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 34 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 35 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 36 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 37 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 38 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.2.1.0 |
|
|
| aliases |
CVE-2016-8647, GHSA-x4cm-m36h-c6qj, PYSEC-2018-58
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fetz-42jf-nqe8 |
|
| 22 |
| url |
VCID-fj2p-7wkh-1fhq |
| vulnerability_id |
VCID-fj2p-7wkh-1fhq |
| summary |
A flaw was found in ansible module where credentials are disclosed in the console log by default and not protected by the security feature when using the bitbucket_pipeline_variable module. This flaw allows an attacker to steal bitbucket_pipeline credentials. The highest threat from this vulnerability is to confidentiality. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20178 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13388 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13435 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13471 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13411 |
| published_at |
2026-04-01T12:55:00Z |
|
| 4 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13498 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13448 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13367 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13571 |
| published_at |
2026-04-04T12:55:00Z |
|
| 8 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.1351 |
| published_at |
2026-04-02T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20178 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.9.18 |
| purl |
pkg:pypi/ansible@2.9.18 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 3 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 4 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 5 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 6 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 7 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 8 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 9 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 10 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.18 |
|
|
| aliases |
CVE-2021-20178, GHSA-wv5p-gmmv-wh9v, PYSEC-2021-106
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fj2p-7wkh-1fhq |
|
| 23 |
| url |
VCID-geaa-6dxx-tbcw |
| vulnerability_id |
VCID-geaa-6dxx-tbcw |
| summary |
A flaw was found in Ansible Engine's ansible-connection module, where sensitive information such as the Ansible user credentials is disclosed by default in the traceback error message. The highest threat from this vulnerability is to confidentiality. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-3620 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0029 |
| scoring_system |
epss |
| scoring_elements |
0.52409 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.0029 |
| scoring_system |
epss |
| scoring_elements |
0.52437 |
| published_at |
2026-04-04T12:55:00Z |
|
| 2 |
| value |
0.0029 |
| scoring_system |
epss |
| scoring_elements |
0.52402 |
| published_at |
2026-04-07T12:55:00Z |
|
| 3 |
| value |
0.0029 |
| scoring_system |
epss |
| scoring_elements |
0.52455 |
| published_at |
2026-04-08T12:55:00Z |
|
| 4 |
| value |
0.0029 |
| scoring_system |
epss |
| scoring_elements |
0.52364 |
| published_at |
2026-04-01T12:55:00Z |
|
| 5 |
| value |
0.0029 |
| scoring_system |
epss |
| scoring_elements |
0.525 |
| published_at |
2026-04-11T12:55:00Z |
|
| 6 |
| value |
0.0029 |
| scoring_system |
epss |
| scoring_elements |
0.52484 |
| published_at |
2026-04-12T12:55:00Z |
|
| 7 |
| value |
0.0029 |
| scoring_system |
epss |
| scoring_elements |
0.52468 |
| published_at |
2026-04-13T12:55:00Z |
|
| 8 |
| value |
0.0029 |
| scoring_system |
epss |
| scoring_elements |
0.52449 |
| published_at |
2026-04-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-3620 |
|
| 8 |
| reference_url |
https://bugzilla.redhat.com/show_bug.cgi?id=1975767 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
6.8 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 3 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:09:25Z/ |
|
|
| url |
https://bugzilla.redhat.com/show_bug.cgi?id=1975767 |
|
| 9 |
|
| 10 |
|
| 11 |
| reference_url |
https://github.com/advisories/GHSA-4r65-35qq-ch8j |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
6.8 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-4r65-35qq-ch8j |
|
| 12 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
6.8 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-3620, GHSA-4r65-35qq-ch8j, PYSEC-2022-164
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-geaa-6dxx-tbcw |
|
| 24 |
| url |
VCID-hfxe-jjf5-nqd1 |
| vulnerability_id |
VCID-hfxe-jjf5-nqd1 |
| summary |
A flaw was found in Ansible before version 2.2.0. The apt_key module does not properly verify key fingerprints, allowing remote adversary to create an OpenPGP key which matches the short key ID and inject this key instead of the correct key. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-8614 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00079 |
| scoring_system |
epss |
| scoring_elements |
0.23411 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00079 |
| scoring_system |
epss |
| scoring_elements |
0.23465 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00079 |
| scoring_system |
epss |
| scoring_elements |
0.23504 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00079 |
| scoring_system |
epss |
| scoring_elements |
0.23486 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00079 |
| scoring_system |
epss |
| scoring_elements |
0.23436 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00079 |
| scoring_system |
epss |
| scoring_elements |
0.23363 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00079 |
| scoring_system |
epss |
| scoring_elements |
0.23582 |
| published_at |
2026-04-04T12:55:00Z |
|
| 7 |
| value |
0.00079 |
| scoring_system |
epss |
| scoring_elements |
0.23383 |
| published_at |
2026-04-01T12:55:00Z |
|
| 8 |
| value |
0.00079 |
| scoring_system |
epss |
| scoring_elements |
0.23544 |
| published_at |
2026-04-02T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-8614 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N |
|
| 1 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.2.0.0 |
| purl |
pkg:pypi/ansible@2.2.0.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 8 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 9 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 10 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 11 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 12 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 13 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 14 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 15 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 16 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 17 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 18 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 19 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 20 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 21 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 22 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 23 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 24 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 25 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 26 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 27 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 28 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 29 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 30 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 31 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 32 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 33 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 34 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 35 |
| vulnerability |
VCID-yc8n-wxb4-1uaz |
|
| 36 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 37 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 38 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 39 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 40 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.2.0.0 |
|
| 1 |
|
|
| aliases |
CVE-2016-8614, GHSA-cmwx-9m2h-x7v4, PYSEC-2018-37
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-hfxe-jjf5-nqd1 |
|
| 25 |
| url |
VCID-hnjw-vehk-2fdd |
| vulnerability_id |
VCID-hnjw-vehk-2fdd |
| summary |
Ansible before 1.9.2 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-3908 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0008 |
| scoring_system |
epss |
| scoring_elements |
0.23694 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.0008 |
| scoring_system |
epss |
| scoring_elements |
0.23718 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.0008 |
| scoring_system |
epss |
| scoring_elements |
0.23835 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.0008 |
| scoring_system |
epss |
| scoring_elements |
0.23876 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.0008 |
| scoring_system |
epss |
| scoring_elements |
0.23663 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.0008 |
| scoring_system |
epss |
| scoring_elements |
0.23733 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.0008 |
| scoring_system |
epss |
| scoring_elements |
0.23779 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.0008 |
| scoring_system |
epss |
| scoring_elements |
0.23795 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.0008 |
| scoring_system |
epss |
| scoring_elements |
0.23751 |
| published_at |
2026-04-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-3908 |
|
| 4 |
|
| 5 |
|
| 6 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N |
|
| 1 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
| reference_url |
http://www.ansible.com/security |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N |
|
| 1 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
http://www.ansible.com/security |
|
| 12 |
|
| 13 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@1.9.2 |
| purl |
pkg:pypi/ansible@1.9.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 8 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 9 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 10 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 11 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 12 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 13 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 14 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 15 |
| vulnerability |
VCID-hfxe-jjf5-nqd1 |
|
| 16 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 17 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 18 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 19 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 20 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 21 |
| vulnerability |
VCID-q4q1-aueh-sub2 |
|
| 22 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 23 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 24 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 25 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 26 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 27 |
| vulnerability |
VCID-s1r4-29kw-5kbg |
|
| 28 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 29 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 30 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 31 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 32 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 33 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 34 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 35 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 36 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 37 |
| vulnerability |
VCID-yc8n-wxb4-1uaz |
|
| 38 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 39 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 40 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 41 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 42 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@1.9.2 |
|
|
| aliases |
CVE-2015-3908, GHSA-w64c-pxjj-h866, PYSEC-2015-1
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-hnjw-vehk-2fdd |
|
| 26 |
| url |
VCID-hqar-fca3-cbht |
| vulnerability_id |
VCID-hqar-fca3-cbht |
| summary |
A race condition flaw was found in Ansible Engine 2.7.17 and prior, 2.8.9 and prior, 2.9.6 and prior when running a playbook with an unprivileged become user. When Ansible needs to run a module with become user, the temporary directory is created in /var/tmp. This directory is created with "umask 77 && mkdir -p <dir>"; this operation does not fail if the directory already exists and is owned by another user. An attacker could take advantage to gain control of the become user as the target directory can be retrieved by iterating '/proc/<pid>/cmdline'. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-1733 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08244 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08262 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08283 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08291 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08272 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08208 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08259 |
| published_at |
2026-04-04T12:55:00Z |
|
| 7 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08146 |
| published_at |
2026-04-01T12:55:00Z |
|
| 8 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08205 |
| published_at |
2026-04-02T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-1733 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.0 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L |
|
| 1 |
| value |
1.0 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L |
|
| 2 |
| value |
LOW |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2020-1733 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
3.7 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:L/AC:H/Au:N/C:P/I:P/A:P |
|
| 1 |
| value |
5.0 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L |
|
| 2 |
| value |
1.0 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L |
|
| 3 |
| value |
LOW |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2020-1733 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
| 54 |
|
| 55 |
|
| 56 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.7.17 |
| purl |
pkg:pypi/ansible@2.7.17 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 8 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 9 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 10 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 11 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 12 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 13 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 14 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 15 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 16 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 17 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 18 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 19 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 20 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 21 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 22 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.17 |
|
| 1 |
| url |
pkg:pypi/ansible@2.8.8 |
| purl |
pkg:pypi/ansible@2.8.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 8 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 9 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 10 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 11 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 12 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 13 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 14 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 15 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 16 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 17 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 18 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 19 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 20 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 21 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 22 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 23 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 24 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 25 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 26 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 27 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 28 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 29 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.8 |
|
| 2 |
| url |
pkg:pypi/ansible@2.8.11 |
| purl |
pkg:pypi/ansible@2.8.11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 8 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 9 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 10 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 11 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 12 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 13 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 14 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 15 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 16 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 17 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 18 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 19 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 20 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 21 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.11 |
|
| 3 |
| url |
pkg:pypi/ansible@2.9.6 |
| purl |
pkg:pypi/ansible@2.9.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3jej-4jyp-cqbt |
|
| 1 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 2 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 8 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 9 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 10 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 11 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 12 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 13 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 14 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 15 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 16 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 17 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 18 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 19 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 20 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 21 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 22 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 23 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 24 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 25 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 26 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 27 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 28 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.6 |
|
| 4 |
| url |
pkg:pypi/ansible@2.9.7 |
| purl |
pkg:pypi/ansible@2.9.7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 8 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 9 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 10 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 11 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 12 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 13 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 14 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 15 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 16 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 17 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 18 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 19 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.7 |
|
|
| aliases |
CVE-2020-1733, GHSA-g4mq-6fp5-qwcf, PYSEC-2020-5
|
| risk_score |
2.2 |
| exploitability |
0.5 |
| weighted_severity |
4.5 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-hqar-fca3-cbht |
|
| 27 |
| url |
VCID-jhxm-379u-subt |
| vulnerability_id |
VCID-jhxm-379u-subt |
| summary |
Ansible before version 2.3 has an input validation vulnerability in the handling of data sent from client systems. An attacker with control over a client system being managed by Ansible, and the ability to send facts back to the Ansible server, could use this flaw to execute arbitrary code on the Ansible server using the Ansible server privileges. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2017-7466 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.02741 |
| scoring_system |
epss |
| scoring_elements |
0.85982 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.02741 |
| scoring_system |
epss |
| scoring_elements |
0.85915 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.02741 |
| scoring_system |
epss |
| scoring_elements |
0.85927 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.02741 |
| scoring_system |
epss |
| scoring_elements |
0.85943 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.02741 |
| scoring_system |
epss |
| scoring_elements |
0.85945 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.02741 |
| scoring_system |
epss |
| scoring_elements |
0.85964 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.02741 |
| scoring_system |
epss |
| scoring_elements |
0.85974 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.02741 |
| scoring_system |
epss |
| scoring_elements |
0.85989 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.02741 |
| scoring_system |
epss |
| scoring_elements |
0.85987 |
| published_at |
2026-04-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2017-7466 |
|
| 8 |
|
| 9 |
|
| 10 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
8.0 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
8.6 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2017-7466 |
| reference_id |
CVE-2017-7466 |
| reference_type |
|
| scores |
| 0 |
| value |
8.5 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:M/Au:S/C:C/I:C/A:C |
|
| 1 |
| value |
8.0 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H |
|
| 2 |
| value |
8.0 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H |
|
| 3 |
| value |
8.6 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 4 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2017-7466 |
|
| 22 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.2.3.0 |
| purl |
pkg:pypi/ansible@2.2.3.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 8 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 9 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 10 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 11 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 12 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 13 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 14 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 15 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 16 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 17 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 18 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 19 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 20 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 21 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 22 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 23 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 24 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 25 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 26 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 27 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 28 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 29 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 30 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 31 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 32 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 33 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 34 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 35 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 36 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 37 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 38 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.2.3.0 |
|
| 1 |
| url |
pkg:pypi/ansible@2.3.0.0 |
| purl |
pkg:pypi/ansible@2.3.0.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1d7-4rje-ayf9 |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 11 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 12 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 13 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 14 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 15 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 16 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 17 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 18 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 19 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 20 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 21 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 22 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 23 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 24 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 25 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 26 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 27 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 28 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 29 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 30 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 31 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 32 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 33 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 34 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 35 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 36 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 37 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 38 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.3.0.0 |
|
|
| aliases |
CVE-2017-7466, GHSA-3m8p-xpm6-8ww3, PYSEC-2018-40
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-jhxm-379u-subt |
|
| 28 |
| url |
VCID-js7k-ptm9-2yh1 |
| vulnerability_id |
VCID-js7k-ptm9-2yh1 |
| summary |
Ethereum 0xe933c0cd9784414d5f278c114904f5a84b396919#code.sol latest version is affected by a denial of service vulnerability in the affected payout function. Once the length of this array is too long, it will result in an exception. Attackers can make attacks by creating a series of account addresses. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-20178 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00389 |
| scoring_system |
epss |
| scoring_elements |
0.59975 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00389 |
| scoring_system |
epss |
| scoring_elements |
0.59852 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.00389 |
| scoring_system |
epss |
| scoring_elements |
0.59928 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00389 |
| scoring_system |
epss |
| scoring_elements |
0.59954 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00389 |
| scoring_system |
epss |
| scoring_elements |
0.59924 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00389 |
| scoring_system |
epss |
| scoring_elements |
0.59974 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00389 |
| scoring_system |
epss |
| scoring_elements |
0.59987 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00389 |
| scoring_system |
epss |
| scoring_elements |
0.60008 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.00389 |
| scoring_system |
epss |
| scoring_elements |
0.59993 |
| published_at |
2026-04-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-20178 |
|
| 1 |
|
| 2 |
|
| 3 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.9.18 |
| purl |
pkg:pypi/ansible@2.9.18 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 3 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 4 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 5 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 6 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 7 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 8 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 9 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 10 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.18 |
|
|
| aliases |
CVE-2020-20178
|
| risk_score |
1.9 |
| exploitability |
0.5 |
| weighted_severity |
3.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-js7k-ptm9-2yh1 |
|
| 29 |
| url |
VCID-jwsu-7znb-kueg |
| vulnerability_id |
VCID-jwsu-7znb-kueg |
| summary |
Ansible before 1.5.5 constructs filenames containing user and password fields on the basis of deb lines in sources.list, which might allow local users to obtain sensitive credential information in opportunistic circumstances by leveraging existence of a file that uses the "deb http://user:pass@server:port/" format. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-4660 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30881 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30751 |
| published_at |
2026-04-13T12:55:00Z |
|
| 2 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30796 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.3084 |
| published_at |
2026-04-11T12:55:00Z |
|
| 4 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30839 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30807 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30749 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30929 |
| published_at |
2026-04-04T12:55:00Z |
|
| 8 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30754 |
| published_at |
2026-04-01T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-4660 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@1.5.5 |
| purl |
pkg:pypi/ansible@1.5.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4b5u-b82x-zkc5 |
|
| 1 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 2 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 3 |
| vulnerability |
VCID-7sp5-368w-w3fd |
|
| 4 |
| vulnerability |
VCID-8pn7-4k42-6qeb |
|
| 5 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 6 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 7 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 8 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 9 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 10 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 11 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 12 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 13 |
| vulnerability |
VCID-dtc3-3bxm-fkcg |
|
| 14 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 15 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 16 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 17 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 18 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 19 |
| vulnerability |
VCID-hfxe-jjf5-nqd1 |
|
| 20 |
| vulnerability |
VCID-hnjw-vehk-2fdd |
|
| 21 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 22 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 23 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 24 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 25 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 26 |
| vulnerability |
VCID-q4q1-aueh-sub2 |
|
| 27 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 28 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 29 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 30 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 31 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 32 |
| vulnerability |
VCID-s1r4-29kw-5kbg |
|
| 33 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 34 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 35 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 36 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 37 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 38 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 39 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 40 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 41 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 42 |
| vulnerability |
VCID-yc8n-wxb4-1uaz |
|
| 43 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 44 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 45 |
| vulnerability |
VCID-ynmp-3yfy-sfc1 |
|
| 46 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 47 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 48 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@1.5.5 |
|
|
| aliases |
CVE-2014-4660, GHSA-5xm4-jmpw-p6j3, PYSEC-2020-202
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-jwsu-7znb-kueg |
|
| 30 |
| url |
VCID-kb5h-116p-33b4 |
| vulnerability_id |
VCID-kb5h-116p-33b4 |
| summary |
In Ansible, all Ansible Engine versions up to ansible-engine 2.8.5, ansible-engine 2.7.13, ansible-engine 2.6.19, were logging at the DEBUG level which lead to a disclosure of credentials if a plugin used a library that logged credentials at the DEBUG level. This flaw does not affect Ansible modules, as those are executed in a separate process. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2019-14846 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00153 |
| scoring_system |
epss |
| scoring_elements |
0.35985 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00153 |
| scoring_system |
epss |
| scoring_elements |
0.35913 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.00153 |
| scoring_system |
epss |
| scoring_elements |
0.36104 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00153 |
| scoring_system |
epss |
| scoring_elements |
0.36134 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00153 |
| scoring_system |
epss |
| scoring_elements |
0.3597 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00153 |
| scoring_system |
epss |
| scoring_elements |
0.36019 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00153 |
| scoring_system |
epss |
| scoring_elements |
0.36043 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00153 |
| scoring_system |
epss |
| scoring_elements |
0.36048 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.00153 |
| scoring_system |
epss |
| scoring_elements |
0.3601 |
| published_at |
2026-04-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2019-14846 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
8.5 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2019-14846 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
2.1 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:L/AC:L/Au:N/C:P/I:N/A:N |
|
| 1 |
| value |
7.3 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H |
|
| 2 |
| value |
7.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
|
| 3 |
| value |
8.5 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 4 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2019-14846 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.6.20 |
| purl |
pkg:pypi/ansible@2.6.20 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 8 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 9 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 10 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 11 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 12 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 13 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 14 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 15 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 16 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 17 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 18 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 19 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 20 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 21 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 22 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 23 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 24 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 25 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 26 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 27 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 28 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.6.20 |
|
| 1 |
| url |
pkg:pypi/ansible@2.7.14 |
| purl |
pkg:pypi/ansible@2.7.14 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 3 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 4 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 5 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-dagf-buer-4ffr |
|
| 11 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 12 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 13 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 14 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 15 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 16 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 17 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 18 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 19 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 20 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 21 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 22 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 23 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 24 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 25 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 26 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 27 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 28 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 29 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 30 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 31 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 32 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 33 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 34 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 35 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.14 |
|
| 2 |
| url |
pkg:pypi/ansible@2.8.6 |
| purl |
pkg:pypi/ansible@2.8.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 3 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 4 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 5 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-dagf-buer-4ffr |
|
| 11 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 12 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 13 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 14 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 15 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 16 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 17 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 18 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 19 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 20 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 21 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 22 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 23 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 24 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 25 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 26 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 27 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 28 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 29 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 30 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 31 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 32 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 33 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 34 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.6 |
|
| 3 |
| url |
pkg:pypi/ansible@2.9.0b1 |
| purl |
pkg:pypi/ansible@2.9.0b1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3jej-4jyp-cqbt |
|
| 1 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 2 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 3 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 4 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 5 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 6 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 7 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 8 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 9 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 10 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 11 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 12 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 13 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 14 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 15 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 16 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 17 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 18 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 19 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 20 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 21 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 22 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 23 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 24 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 25 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 26 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 27 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 28 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 29 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 30 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 31 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 32 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 33 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 34 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.0b1 |
|
|
| aliases |
CVE-2019-14846, GHSA-pm48-cvv2-29q5, PYSEC-2019-4
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-kb5h-116p-33b4 |
|
| 31 |
| url |
VCID-puq1-z5h7-pkdg |
| vulnerability_id |
VCID-puq1-z5h7-pkdg |
| summary |
ansible before versions 2.5.14, 2.6.11, 2.7.5 is vulnerable to a information disclosure flaw in vvv+ mode with no_log on that can lead to leakage of sensible data. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2018-16876 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00638 |
| scoring_system |
epss |
| scoring_elements |
0.70437 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00638 |
| scoring_system |
epss |
| scoring_elements |
0.70446 |
| published_at |
2026-04-07T12:55:00Z |
|
| 2 |
| value |
0.00638 |
| scoring_system |
epss |
| scoring_elements |
0.70491 |
| published_at |
2026-04-08T12:55:00Z |
|
| 3 |
| value |
0.00638 |
| scoring_system |
epss |
| scoring_elements |
0.70506 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00638 |
| scoring_system |
epss |
| scoring_elements |
0.7053 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.00638 |
| scoring_system |
epss |
| scoring_elements |
0.70515 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00638 |
| scoring_system |
epss |
| scoring_elements |
0.70501 |
| published_at |
2026-04-13T12:55:00Z |
|
| 7 |
| value |
0.00638 |
| scoring_system |
epss |
| scoring_elements |
0.70451 |
| published_at |
2026-04-02T12:55:00Z |
|
| 8 |
| value |
0.00638 |
| scoring_system |
epss |
| scoring_elements |
0.70468 |
| published_at |
2026-04-04T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2018-16876 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
8.2 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
| reference_url |
https://usn.ubuntu.com/4072-1 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
8.2 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://usn.ubuntu.com/4072-1 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2018-16876 |
| reference_id |
CVE-2018-16876 |
| reference_type |
|
| scores |
| 0 |
| value |
3.5 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:M/Au:S/C:P/I:N/A:N |
|
| 1 |
| value |
3.1 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N |
|
| 2 |
| value |
5.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N |
|
| 3 |
| value |
8.2 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 4 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2018-16876 |
|
| 48 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.5.14 |
| purl |
pkg:pypi/ansible@2.5.14 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b1pw-nusu-27c4 |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 11 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 12 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 13 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 14 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 15 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 16 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 17 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 18 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 19 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 20 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 21 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 22 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 23 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 24 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 25 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 26 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 27 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 28 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 29 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 30 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 31 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 32 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 33 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 34 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.5.14 |
|
| 1 |
| url |
pkg:pypi/ansible@2.6.11 |
| purl |
pkg:pypi/ansible@2.6.11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b1pw-nusu-27c4 |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-ckt2-us5z-pyef |
|
| 9 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 10 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 11 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 12 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 13 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 14 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 15 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 16 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 17 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 18 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 19 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 20 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 21 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 22 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 23 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 24 |
| vulnerability |
VCID-swpr-3qae-d7fe |
|
| 25 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 26 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 27 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 28 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 29 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 30 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 31 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 32 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 33 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 34 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 35 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 36 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.6.11 |
|
| 2 |
| url |
pkg:pypi/ansible@2.7.5 |
| purl |
pkg:pypi/ansible@2.7.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 3 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 4 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 5 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 6 |
| vulnerability |
VCID-b1pw-nusu-27c4 |
|
| 7 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 8 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 9 |
| vulnerability |
VCID-ckt2-us5z-pyef |
|
| 10 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 11 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 12 |
| vulnerability |
VCID-dagf-buer-4ffr |
|
| 13 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 14 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 15 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 16 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 17 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 18 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 19 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 20 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 21 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 22 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 23 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 24 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 25 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 26 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 27 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 28 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 29 |
| vulnerability |
VCID-swpr-3qae-d7fe |
|
| 30 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 31 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 32 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 33 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 34 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 35 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 36 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 37 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 38 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 39 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 40 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 41 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 42 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 43 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.5 |
|
|
| aliases |
CVE-2018-16876, GHSA-j569-fghw-f9rx, PYSEC-2019-141
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-puq1-z5h7-pkdg |
|
| 32 |
| url |
VCID-q4q1-aueh-sub2 |
| vulnerability_id |
VCID-q4q1-aueh-sub2 |
| summary |
Ansible before version 2.2.0 fails to properly sanitize fact variables sent from the Ansible controller. An attacker with the ability to create special variables on the controller could execute arbitrary commands on Ansible clients as the user Ansible runs as. |
| references |
| 0 |
|
| 1 |
|
| 2 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-8628 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00422 |
| scoring_system |
epss |
| scoring_elements |
0.62098 |
| published_at |
2026-04-09T12:55:00Z |
|
| 1 |
| value |
0.00422 |
| scoring_system |
epss |
| scoring_elements |
0.6208 |
| published_at |
2026-04-08T12:55:00Z |
|
| 2 |
| value |
0.00422 |
| scoring_system |
epss |
| scoring_elements |
0.62031 |
| published_at |
2026-04-07T12:55:00Z |
|
| 3 |
| value |
0.00422 |
| scoring_system |
epss |
| scoring_elements |
0.62061 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00422 |
| scoring_system |
epss |
| scoring_elements |
0.6203 |
| published_at |
2026-04-02T12:55:00Z |
|
| 5 |
| value |
0.00422 |
| scoring_system |
epss |
| scoring_elements |
0.62118 |
| published_at |
2026-04-11T12:55:00Z |
|
| 6 |
| value |
0.00422 |
| scoring_system |
epss |
| scoring_elements |
0.62107 |
| published_at |
2026-04-12T12:55:00Z |
|
| 7 |
| value |
0.00422 |
| scoring_system |
epss |
| scoring_elements |
0.62086 |
| published_at |
2026-04-13T12:55:00Z |
|
| 8 |
| value |
0.00422 |
| scoring_system |
epss |
| scoring_elements |
0.61959 |
| published_at |
2026-04-01T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-8628 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
| reference_url |
https://github.com/advisories/GHSA-jg4f-jqm5-4mgq |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
9.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H |
|
| 1 |
| value |
CRITICAL |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
9.4 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H |
|
| 3 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-jg4f-jqm5-4mgq |
|
| 7 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
9.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H |
|
| 1 |
| value |
9.4 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H |
|
| 2 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.2.0.0 |
| purl |
pkg:pypi/ansible@2.2.0.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 8 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 9 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 10 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 11 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 12 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 13 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 14 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 15 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 16 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 17 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 18 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 19 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 20 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 21 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 22 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 23 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 24 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 25 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 26 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 27 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 28 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 29 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 30 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 31 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 32 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 33 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 34 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 35 |
| vulnerability |
VCID-yc8n-wxb4-1uaz |
|
| 36 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 37 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 38 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 39 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 40 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.2.0.0 |
|
| 1 |
|
|
| aliases |
CVE-2016-8628, GHSA-jg4f-jqm5-4mgq, PYSEC-2018-38
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-q4q1-aueh-sub2 |
|
| 33 |
| url |
VCID-qbdk-hxhg-wbh4 |
| vulnerability_id |
VCID-qbdk-hxhg-wbh4 |
| summary |
Ansible Community General Collection is vulnerable to exposure of sensitive information
A flaw was found in ansible-collection-community-general. This vulnerability allows for information exposure (IE) of sensitive credentials, specifically plaintext passwords, via verbose output when running Ansible with debug modes. Attackers with access to logs could retrieve these secrets and potentially compromise Keycloak accounts or administrative access. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-14010 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00015 |
| scoring_system |
epss |
| scoring_elements |
0.03045 |
| published_at |
2026-04-04T12:55:00Z |
|
| 1 |
| value |
0.00015 |
| scoring_system |
epss |
| scoring_elements |
0.03031 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00018 |
| scoring_system |
epss |
| scoring_elements |
0.0471 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00018 |
| scoring_system |
epss |
| scoring_elements |
0.04677 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.00018 |
| scoring_system |
epss |
| scoring_elements |
0.04694 |
| published_at |
2026-04-12T12:55:00Z |
|
| 5 |
| value |
0.00018 |
| scoring_system |
epss |
| scoring_elements |
0.04671 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00018 |
| scoring_system |
epss |
| scoring_elements |
0.04705 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.00018 |
| scoring_system |
epss |
| scoring_elements |
0.04717 |
| published_at |
2026-04-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-14010 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-14010, GHSA-8ggh-xwr9-3373
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-qbdk-hxhg-wbh4 |
|
| 34 |
| url |
VCID-r6bb-p28b-8fcn |
| vulnerability_id |
VCID-r6bb-p28b-8fcn |
| summary |
Execution of Ansible playbooks on Windows platforms with PowerShell ScriptBlock logging and Module logging enabled can allow for 'become' passwords to appear in EventLogs in plaintext. A local user with administrator privileges on the machine can view these logs and discover the plaintext password. Ansible Engine 2.8 and older are believed to be vulnerable. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2018-16859 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00096 |
| scoring_system |
epss |
| scoring_elements |
0.26464 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00096 |
| scoring_system |
epss |
| scoring_elements |
0.26567 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.00096 |
| scoring_system |
epss |
| scoring_elements |
0.2656 |
| published_at |
2026-04-09T12:55:00Z |
|
| 3 |
| value |
0.00096 |
| scoring_system |
epss |
| scoring_elements |
0.26512 |
| published_at |
2026-04-08T12:55:00Z |
|
| 4 |
| value |
0.00096 |
| scoring_system |
epss |
| scoring_elements |
0.26442 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00096 |
| scoring_system |
epss |
| scoring_elements |
0.26657 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.00096 |
| scoring_system |
epss |
| scoring_elements |
0.26612 |
| published_at |
2026-04-02T12:55:00Z |
|
| 7 |
| value |
0.00096 |
| scoring_system |
epss |
| scoring_elements |
0.26562 |
| published_at |
2026-04-01T12:55:00Z |
|
| 8 |
| value |
0.00096 |
| scoring_system |
epss |
| scoring_elements |
0.26521 |
| published_at |
2026-04-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2018-16859 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.4 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
6.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.5.12 |
| purl |
pkg:pypi/ansible@2.5.12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b1pw-nusu-27c4 |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 11 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 12 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 13 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 14 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 15 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 16 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 17 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 18 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 19 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 20 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 21 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 22 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 23 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 24 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 25 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 26 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 27 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 28 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 29 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 30 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 31 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 32 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 33 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 34 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 35 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 36 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.5.12 |
|
| 1 |
| url |
pkg:pypi/ansible@2.5.13 |
| purl |
pkg:pypi/ansible@2.5.13 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b1pw-nusu-27c4 |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 11 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 12 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 13 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 14 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 15 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 16 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 17 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 18 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 19 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 20 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 21 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 22 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 23 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 24 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 25 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 26 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 27 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 28 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 29 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 30 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 31 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 32 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 33 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 34 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 35 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.5.13 |
|
| 2 |
| url |
pkg:pypi/ansible@2.6.9 |
| purl |
pkg:pypi/ansible@2.6.9 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b1pw-nusu-27c4 |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-ckt2-us5z-pyef |
|
| 9 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 10 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 11 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 12 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 13 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 14 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 15 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 16 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 17 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 18 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 19 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 20 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 21 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 22 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 23 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 24 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 25 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 26 |
| vulnerability |
VCID-swpr-3qae-d7fe |
|
| 27 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 28 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 29 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 30 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 31 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 32 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 33 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 34 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 35 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 36 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 37 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 38 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.6.9 |
|
| 3 |
| url |
pkg:pypi/ansible@2.6.10 |
| purl |
pkg:pypi/ansible@2.6.10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b1pw-nusu-27c4 |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-ckt2-us5z-pyef |
|
| 9 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 10 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 11 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 12 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 13 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 14 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 15 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 16 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 17 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 18 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 19 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 20 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 21 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 22 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 23 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 24 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 25 |
| vulnerability |
VCID-swpr-3qae-d7fe |
|
| 26 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 27 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 28 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 29 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 30 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 31 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 32 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 33 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 34 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 35 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 36 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 37 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.6.10 |
|
| 4 |
| url |
pkg:pypi/ansible@2.7.3 |
| purl |
pkg:pypi/ansible@2.7.3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 3 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 4 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 5 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 6 |
| vulnerability |
VCID-b1pw-nusu-27c4 |
|
| 7 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 8 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 9 |
| vulnerability |
VCID-ckt2-us5z-pyef |
|
| 10 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 11 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 12 |
| vulnerability |
VCID-dagf-buer-4ffr |
|
| 13 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 14 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 15 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 16 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 17 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 18 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 19 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 20 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 21 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 22 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 23 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 24 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 25 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 26 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 27 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 28 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 29 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 30 |
| vulnerability |
VCID-swpr-3qae-d7fe |
|
| 31 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 32 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 33 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 34 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 35 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 36 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 37 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 38 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 39 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 40 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 41 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 42 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 43 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 44 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.3 |
|
| 5 |
| url |
pkg:pypi/ansible@2.7.4 |
| purl |
pkg:pypi/ansible@2.7.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 3 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 4 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 5 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 6 |
| vulnerability |
VCID-b1pw-nusu-27c4 |
|
| 7 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 8 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 9 |
| vulnerability |
VCID-ckt2-us5z-pyef |
|
| 10 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 11 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 12 |
| vulnerability |
VCID-dagf-buer-4ffr |
|
| 13 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 14 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 15 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 16 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 17 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 18 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 19 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 20 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 21 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 22 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 23 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 24 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 25 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 26 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 27 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 28 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 29 |
| vulnerability |
VCID-swpr-3qae-d7fe |
|
| 30 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 31 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 32 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 33 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 34 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 35 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 36 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 37 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 38 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 39 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 40 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 41 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 42 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 43 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.4 |
|
| 6 |
| url |
pkg:pypi/ansible@2.8.1 |
| purl |
pkg:pypi/ansible@2.8.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-7uu9-tj6b-quf6 |
|
| 3 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 4 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 5 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 6 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 7 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 8 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 9 |
| vulnerability |
VCID-ckt2-us5z-pyef |
|
| 10 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 11 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 12 |
| vulnerability |
VCID-dagf-buer-4ffr |
|
| 13 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 14 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 15 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 16 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 17 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 18 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 19 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 20 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 21 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 22 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 23 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 24 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 25 |
| vulnerability |
VCID-nukv-kkws-xkb1 |
|
| 26 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 27 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 28 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 29 |
| vulnerability |
VCID-swpr-3qae-d7fe |
|
| 30 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 31 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 32 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 33 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 34 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 35 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 36 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 37 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 38 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 39 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 40 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 41 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 42 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 43 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.1 |
|
|
| aliases |
CVE-2018-16859, GHSA-v735-2pp6-h86r, PYSEC-2018-60
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-r6bb-p28b-8fcn |
|
| 35 |
| url |
VCID-rdwq-93d6-c7b4 |
| vulnerability_id |
VCID-rdwq-93d6-c7b4 |
| summary |
An incomplete fix was found for the fix of the flaw CVE-2020-1733 ansible: insecure temporary directory when running become_user from become directive. The provided fix is insufficient to prevent the race condition on systems using ACLs and FUSE filesystems. Ansible Engine 2.7.18, 2.8.12, and 2.9.9 as well as previous versions are affected and Ansible Tower 3.4.5, 3.5.6 and 3.6.4 as well as previous versions are affected. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-10744 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11545 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.1157 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11597 |
| published_at |
2026-04-09T12:55:00Z |
|
| 3 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11537 |
| published_at |
2026-04-08T12:55:00Z |
|
| 4 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11452 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11664 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11607 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.1148 |
| published_at |
2026-04-01T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-10744 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.0 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L |
|
| 1 |
| value |
2.0 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L |
|
| 2 |
| value |
LOW |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.8.0a1 |
| purl |
pkg:pypi/ansible@2.8.0a1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 3 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 4 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 5 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 11 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 12 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 13 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 14 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 15 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 16 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 17 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 18 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 19 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 20 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 21 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 22 |
| vulnerability |
VCID-nukv-kkws-xkb1 |
|
| 23 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 24 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 25 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 26 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 27 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 28 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 29 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 30 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 31 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 32 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 33 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 34 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 35 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 36 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 37 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.0a1 |
|
| 1 |
| url |
pkg:pypi/ansible@2.8.13 |
| purl |
pkg:pypi/ansible@2.8.13 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 8 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 9 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 10 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 11 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 12 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 13 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 14 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 15 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 16 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 17 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 18 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.13 |
|
| 2 |
| url |
pkg:pypi/ansible@2.9.10 |
| purl |
pkg:pypi/ansible@2.9.10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 8 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 9 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 10 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 11 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 12 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 13 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 14 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 15 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 16 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 17 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 18 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.10 |
|
| 3 |
| url |
pkg:pypi/ansible@2.9.12 |
| purl |
pkg:pypi/ansible@2.9.12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 8 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 9 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 10 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 11 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 12 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 13 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 14 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 15 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.12 |
|
| 4 |
| url |
pkg:pypi/ansible@2.10.0rc1 |
| purl |
pkg:pypi/ansible@2.10.0rc1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 3 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 4 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 5 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 6 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 7 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 8 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 9 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 10 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 11 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.10.0rc1 |
|
|
| aliases |
CVE-2020-10744, GHSA-vp9j-rghq-8jhh, PYSEC-2020-208
|
| risk_score |
2.2 |
| exploitability |
0.5 |
| weighted_severity |
4.5 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-rdwq-93d6-c7b4 |
|
| 36 |
| url |
VCID-rg5d-st3d-nbah |
| vulnerability_id |
VCID-rg5d-st3d-nbah |
| summary |
A flaw was found in Ansible Base when using the aws_ssm connection plugin as garbage collector is not happening after playbook run is completed. Files would remain in the bucket exposing the data. This issue affects directly data confidentiality. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-25635 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00087 |
| scoring_system |
epss |
| scoring_elements |
0.25003 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00087 |
| scoring_system |
epss |
| scoring_elements |
0.25057 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00087 |
| scoring_system |
epss |
| scoring_elements |
0.25098 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00087 |
| scoring_system |
epss |
| scoring_elements |
0.25083 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00087 |
| scoring_system |
epss |
| scoring_elements |
0.25039 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00087 |
| scoring_system |
epss |
| scoring_elements |
0.25199 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.00087 |
| scoring_system |
epss |
| scoring_elements |
0.2497 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.00087 |
| scoring_system |
epss |
| scoring_elements |
0.25158 |
| published_at |
2026-04-02T12:55:00Z |
|
| 8 |
| value |
0.00087 |
| scoring_system |
epss |
| scoring_elements |
0.25073 |
| published_at |
2026-04-01T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-25635 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
|
| fixed_packages |
|
| aliases |
CVE-2020-25635, GHSA-f556-49jc-4rvc, PYSEC-2020-220
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-rg5d-st3d-nbah |
|
| 37 |
| url |
VCID-rknj-nkgs-wyg2 |
| vulnerability_id |
VCID-rknj-nkgs-wyg2 |
| summary |
Ansible "User" module leaks any data which is passed on as a parameter to ssh-keygen. This could lean in undesirable situations such as passphrases credentials passed as a parameter for the ssh-keygen executable. Showing those credentials in clear text form for every user which have access just to the process list. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2018-16837 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0004 |
| scoring_system |
epss |
| scoring_elements |
0.12429 |
| published_at |
2026-04-04T12:55:00Z |
|
| 1 |
| value |
0.0004 |
| scoring_system |
epss |
| scoring_elements |
0.12291 |
| published_at |
2026-04-13T12:55:00Z |
|
| 2 |
| value |
0.0004 |
| scoring_system |
epss |
| scoring_elements |
0.12329 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.0004 |
| scoring_system |
epss |
| scoring_elements |
0.12367 |
| published_at |
2026-04-11T12:55:00Z |
|
| 4 |
| value |
0.0004 |
| scoring_system |
epss |
| scoring_elements |
0.1236 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.0004 |
| scoring_system |
epss |
| scoring_elements |
0.12309 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.0004 |
| scoring_system |
epss |
| scoring_elements |
0.1223 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.0004 |
| scoring_system |
epss |
| scoring_elements |
0.12385 |
| published_at |
2026-04-02T12:55:00Z |
|
| 8 |
| value |
0.0004 |
| scoring_system |
epss |
| scoring_elements |
0.1227 |
| published_at |
2026-04-01T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2018-16837 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
8.5 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
| reference_url |
https://usn.ubuntu.com/4072-1 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
8.5 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://usn.ubuntu.com/4072-1 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.0.0.1 |
| purl |
pkg:pypi/ansible@2.0.0.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 8 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 9 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 10 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 11 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 12 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 13 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 14 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 15 |
| vulnerability |
VCID-hfxe-jjf5-nqd1 |
|
| 16 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 17 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 18 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 19 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 20 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 21 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 22 |
| vulnerability |
VCID-q4q1-aueh-sub2 |
|
| 23 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 24 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 25 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 26 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 27 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 28 |
| vulnerability |
VCID-s1r4-29kw-5kbg |
|
| 29 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 30 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 31 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 32 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 33 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 34 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 35 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 36 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 37 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 38 |
| vulnerability |
VCID-yc8n-wxb4-1uaz |
|
| 39 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 40 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 41 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 42 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 43 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.0.0.1 |
|
| 1 |
| url |
pkg:pypi/ansible@2.5.11 |
| purl |
pkg:pypi/ansible@2.5.11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b1pw-nusu-27c4 |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 11 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 12 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 13 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 14 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 15 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 16 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 17 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 18 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 19 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 20 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 21 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 22 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 23 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 24 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 25 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 26 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 27 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 28 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 29 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 30 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 31 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 32 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 33 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 34 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 35 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 36 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.5.11 |
|
| 2 |
| url |
pkg:pypi/ansible@2.6.7 |
| purl |
pkg:pypi/ansible@2.6.7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b1pw-nusu-27c4 |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-ckt2-us5z-pyef |
|
| 9 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 10 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 11 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 12 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 13 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 14 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 15 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 16 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 17 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 18 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 19 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 20 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 21 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 22 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 23 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 24 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 25 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 26 |
| vulnerability |
VCID-swpr-3qae-d7fe |
|
| 27 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 28 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 29 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 30 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 31 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 32 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 33 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 34 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 35 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 36 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 37 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 38 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.6.7 |
|
| 3 |
| url |
pkg:pypi/ansible@2.7.1 |
| purl |
pkg:pypi/ansible@2.7.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 3 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 4 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 5 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 6 |
| vulnerability |
VCID-b1pw-nusu-27c4 |
|
| 7 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 8 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 9 |
| vulnerability |
VCID-ckt2-us5z-pyef |
|
| 10 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 11 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 12 |
| vulnerability |
VCID-dagf-buer-4ffr |
|
| 13 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 14 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 15 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 16 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 17 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 18 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 19 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 20 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 21 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 22 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 23 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 24 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 25 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 26 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 27 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 28 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 29 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 30 |
| vulnerability |
VCID-swpr-3qae-d7fe |
|
| 31 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 32 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 33 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 34 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 35 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 36 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 37 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 38 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 39 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 40 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 41 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 42 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 43 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 44 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.1 |
|
|
| aliases |
CVE-2018-16837, GHSA-hwrm-63v2-42g4, PYSEC-2018-44
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-rknj-nkgs-wyg2 |
|
| 38 |
| url |
VCID-rsry-fw45-9yev |
| vulnerability_id |
VCID-rsry-fw45-9yev |
| summary |
A flaw was found in several ansible modules, where parameters containing credentials, such as secrets, were being logged in plain-text on managed nodes, as well as being made visible on the controller node when run in verbose mode. These parameters were not protected by the no_log feature. An attacker can take advantage of this information to steal those credentials, provided when they have access to the log files containing them. The highest threat from this vulnerability is to data confidentiality. This flaw affects Red Hat Ansible Automation Platform in versions before 1.2.2 and Ansible Tower in versions before 3.8.2. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-3447 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00072 |
| scoring_system |
epss |
| scoring_elements |
0.21842 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00072 |
| scoring_system |
epss |
| scoring_elements |
0.2187 |
| published_at |
2026-04-13T12:55:00Z |
|
| 2 |
| value |
0.00072 |
| scoring_system |
epss |
| scoring_elements |
0.21967 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00072 |
| scoring_system |
epss |
| scoring_elements |
0.21926 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00072 |
| scoring_system |
epss |
| scoring_elements |
0.22007 |
| published_at |
2026-04-02T12:55:00Z |
|
| 5 |
| value |
0.00072 |
| scoring_system |
epss |
| scoring_elements |
0.22059 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.00072 |
| scoring_system |
epss |
| scoring_elements |
0.21824 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.00072 |
| scoring_system |
epss |
| scoring_elements |
0.21899 |
| published_at |
2026-04-08T12:55:00Z |
|
| 8 |
| value |
0.00072 |
| scoring_system |
epss |
| scoring_elements |
0.21955 |
| published_at |
2026-04-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-3447 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@1.2.2 |
| purl |
pkg:pypi/ansible@1.2.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2v57-zem6-47hq |
|
| 1 |
| vulnerability |
VCID-4b5u-b82x-zkc5 |
|
| 2 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 3 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 4 |
| vulnerability |
VCID-7sp5-368w-w3fd |
|
| 5 |
| vulnerability |
VCID-8pn7-4k42-6qeb |
|
| 6 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 7 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 8 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 9 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 10 |
| vulnerability |
VCID-bc3y-qwxc-p3dx |
|
| 11 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 12 |
| vulnerability |
VCID-c22m-1buy-3uc5 |
|
| 13 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 14 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 15 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 16 |
| vulnerability |
VCID-dtc3-3bxm-fkcg |
|
| 17 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 18 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 19 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 20 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 21 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 22 |
| vulnerability |
VCID-hfxe-jjf5-nqd1 |
|
| 23 |
| vulnerability |
VCID-hnjw-vehk-2fdd |
|
| 24 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 25 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 26 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 27 |
| vulnerability |
VCID-jwsu-7znb-kueg |
|
| 28 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 29 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 30 |
| vulnerability |
VCID-q4q1-aueh-sub2 |
|
| 31 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 32 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 33 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 34 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 35 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 36 |
| vulnerability |
VCID-s1r4-29kw-5kbg |
|
| 37 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 38 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 39 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 40 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 41 |
| vulnerability |
VCID-vdyk-rcxz-z7an |
|
| 42 |
| vulnerability |
VCID-w6be-213x-1yh3 |
|
| 43 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 44 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 45 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 46 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 47 |
| vulnerability |
VCID-xak4-qbwg-z3b7 |
|
| 48 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 49 |
| vulnerability |
VCID-yc8n-wxb4-1uaz |
|
| 50 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 51 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 52 |
| vulnerability |
VCID-ynmp-3yfy-sfc1 |
|
| 53 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 54 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 55 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@1.2.2 |
|
|
| aliases |
CVE-2021-3447, PYSEC-2021-107
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-rsry-fw45-9yev |
|
| 39 |
| url |
VCID-s1r4-29kw-5kbg |
| vulnerability_id |
VCID-s1r4-29kw-5kbg |
| summary |
The create_script function in the lxc_container module in Ansible before 1.9.6-1 and 2.x before 2.0.2.0 allows local users to write to arbitrary files or gain privileges via a symlink attack on (1) /opt/.lxc-attach-script, (2) the archived container in the archive_path directory, or the (3) lxc-attach-script.log or (4) lxc-attach-script.err files in the temporary directory. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-3096 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00037 |
| scoring_system |
epss |
| scoring_elements |
0.1098 |
| published_at |
2026-04-12T12:55:00Z |
|
| 1 |
| value |
0.00037 |
| scoring_system |
epss |
| scoring_elements |
0.11012 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.00037 |
| scoring_system |
epss |
| scoring_elements |
0.11009 |
| published_at |
2026-04-09T12:55:00Z |
|
| 3 |
| value |
0.00037 |
| scoring_system |
epss |
| scoring_elements |
0.10955 |
| published_at |
2026-04-08T12:55:00Z |
|
| 4 |
| value |
0.00037 |
| scoring_system |
epss |
| scoring_elements |
0.1088 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00037 |
| scoring_system |
epss |
| scoring_elements |
0.11056 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.00037 |
| scoring_system |
epss |
| scoring_elements |
0.10995 |
| published_at |
2026-04-02T12:55:00Z |
|
| 7 |
| value |
0.00037 |
| scoring_system |
epss |
| scoring_elements |
0.10855 |
| published_at |
2026-04-01T12:55:00Z |
|
| 8 |
| value |
0.00037 |
| scoring_system |
epss |
| scoring_elements |
0.10957 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-3096 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
8.5 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2016-3096 |
| reference_id |
CVE-2016-3096 |
| reference_type |
|
| scores |
| 0 |
| value |
7.2 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:L/AC:L/Au:N/C:C/I:C/A:C |
|
| 1 |
| value |
7.8 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
|
| 2 |
| value |
7.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
|
| 3 |
| value |
8.5 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 4 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2016-3096 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:pypi/ansible@2.0.0 |
| purl |
pkg:pypi/ansible@2.0.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3jh2-znva-2bb6 |
|
| 1 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 2 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 3 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 4 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 5 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 11 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 12 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 13 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 14 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 15 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 16 |
| vulnerability |
VCID-hfxe-jjf5-nqd1 |
|
| 17 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 18 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 19 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 20 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 21 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 22 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 23 |
| vulnerability |
VCID-q4q1-aueh-sub2 |
|
| 24 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 25 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 26 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 27 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 28 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 29 |
| vulnerability |
VCID-s1r4-29kw-5kbg |
|
| 30 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 31 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 32 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 33 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 34 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 35 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 36 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 37 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 38 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 39 |
| vulnerability |
VCID-y91x-2rch-pkar |
|
| 40 |
| vulnerability |
VCID-yc8n-wxb4-1uaz |
|
| 41 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 42 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 43 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 44 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 45 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.0.0 |
|
| 2 |
| url |
pkg:pypi/ansible@2.0.2.0 |
| purl |
pkg:pypi/ansible@2.0.2.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 8 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 9 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 10 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 11 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 12 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 13 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 14 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 15 |
| vulnerability |
VCID-hfxe-jjf5-nqd1 |
|
| 16 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 17 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 18 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 19 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 20 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 21 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 22 |
| vulnerability |
VCID-q4q1-aueh-sub2 |
|
| 23 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 24 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 25 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 26 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 27 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 28 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 29 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 30 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 31 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 32 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 33 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 34 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 35 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 36 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 37 |
| vulnerability |
VCID-yc8n-wxb4-1uaz |
|
| 38 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 39 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 40 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 41 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 42 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.0.2.0 |
|
|
| aliases |
CVE-2016-3096, GHSA-rh6x-qvg7-rrmj, PYSEC-2016-1
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-s1r4-29kw-5kbg |
|
| 40 |
| url |
VCID-t6db-buke-nfhf |
| vulnerability_id |
VCID-t6db-buke-nfhf |
| summary |
A flaw was discovered in the way Ansible templating was implemented in versions before 2.6.18, 2.7.12 and 2.8.2, causing the possibility of information disclosure through unexpected variable substitution. By taking advantage of unintended variable substitution the content of any variable may be disclosed. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.6.18 |
| purl |
pkg:pypi/ansible@2.6.18 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-ckt2-us5z-pyef |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 11 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 12 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 13 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 14 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 15 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 16 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 17 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 18 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 19 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 20 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 21 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 22 |
| vulnerability |
VCID-swpr-3qae-d7fe |
|
| 23 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 24 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 25 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 26 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 27 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 28 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 29 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 30 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 31 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 32 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.6.18 |
|
| 1 |
| url |
pkg:pypi/ansible@2.7.12 |
| purl |
pkg:pypi/ansible@2.7.12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 3 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 4 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 5 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-ckt2-us5z-pyef |
|
| 9 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 10 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 11 |
| vulnerability |
VCID-dagf-buer-4ffr |
|
| 12 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 13 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 14 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 15 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 16 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 17 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 18 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 19 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 20 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 21 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 22 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 23 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 24 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 25 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 26 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 27 |
| vulnerability |
VCID-swpr-3qae-d7fe |
|
| 28 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 29 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 30 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 31 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 32 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 33 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 34 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 35 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 36 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 37 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 38 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 39 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.12 |
|
| 2 |
| url |
pkg:pypi/ansible@2.8.2 |
| purl |
pkg:pypi/ansible@2.8.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-7uu9-tj6b-quf6 |
|
| 3 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 4 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 5 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 6 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 7 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 8 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 9 |
| vulnerability |
VCID-ckt2-us5z-pyef |
|
| 10 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 11 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 12 |
| vulnerability |
VCID-dagf-buer-4ffr |
|
| 13 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 14 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 15 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 16 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 17 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 18 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 19 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 20 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 21 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 22 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 23 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 24 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 25 |
| vulnerability |
VCID-nukv-kkws-xkb1 |
|
| 26 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 27 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 28 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 29 |
| vulnerability |
VCID-swpr-3qae-d7fe |
|
| 30 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 31 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 32 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 33 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 34 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 35 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 36 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 37 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 38 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 39 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 40 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 41 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.2 |
|
|
| aliases |
PYSEC-2019-72
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-t6db-buke-nfhf |
|
| 41 |
| url |
VCID-tdp4-h4ht-pqhs |
| vulnerability_id |
VCID-tdp4-h4ht-pqhs |
| summary |
A flaw was found in the solaris_zone module from the Ansible Community modules. When setting the name for the zone on the Solaris host, the zone name is checked by listing the process with the 'ps' bare command on the remote machine. An attacker could take advantage of this flaw by crafting the name of the zone and executing arbitrary commands in the remote host. Ansible Engine 2.7.15, 2.8.7, and 2.9.2 as well as previous versions are affected. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.7.15 |
| purl |
pkg:pypi/ansible@2.7.15 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 3 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 4 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 5 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 11 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 12 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 13 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 14 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 15 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 16 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 17 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 18 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 19 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 20 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 21 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 22 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 23 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 24 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 25 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 26 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 27 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 28 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 29 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 30 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 31 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 32 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 33 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.15 |
|
| 1 |
| url |
pkg:pypi/ansible@2.8.7 |
| purl |
pkg:pypi/ansible@2.8.7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 3 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 4 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 5 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 11 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 12 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 13 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 14 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 15 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 16 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 17 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 18 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 19 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 20 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 21 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 22 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 23 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 24 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 25 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 26 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 27 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 28 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 29 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 30 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 31 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 32 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.7 |
|
| 2 |
| url |
pkg:pypi/ansible@2.9.2 |
| purl |
pkg:pypi/ansible@2.9.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3jej-4jyp-cqbt |
|
| 1 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 2 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 3 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 4 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 5 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 6 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 7 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 8 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 9 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 10 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 11 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 12 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 13 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 14 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 15 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 16 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 17 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 18 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 19 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 20 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 21 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 22 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 23 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 24 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 25 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 26 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 27 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 28 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 29 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 30 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 31 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 32 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.2 |
|
|
| aliases |
PYSEC-2020-180
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-tdp4-h4ht-pqhs |
|
| 42 |
| url |
VCID-ujbp-cc1r-wfe9 |
| vulnerability_id |
VCID-ujbp-cc1r-wfe9 |
| summary |
Ansible symlink attack vulnerability
An absolute path traversal attack exists in the Ansible automation platform. This flaw allows an attacker to craft a malicious Ansible role and make the victim execute the role. A symlink can be used to overwrite a file outside of the extraction path. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2023-5115 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00716 |
| scoring_system |
epss |
| scoring_elements |
0.72353 |
| published_at |
2026-04-04T12:55:00Z |
|
| 1 |
| value |
0.00716 |
| scoring_system |
epss |
| scoring_elements |
0.72376 |
| published_at |
2026-04-13T12:55:00Z |
|
| 2 |
| value |
0.00716 |
| scoring_system |
epss |
| scoring_elements |
0.72388 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.00716 |
| scoring_system |
epss |
| scoring_elements |
0.72404 |
| published_at |
2026-04-11T12:55:00Z |
|
| 4 |
| value |
0.00716 |
| scoring_system |
epss |
| scoring_elements |
0.72381 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.00716 |
| scoring_system |
epss |
| scoring_elements |
0.7233 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00716 |
| scoring_system |
epss |
| scoring_elements |
0.72335 |
| published_at |
2026-04-02T12:55:00Z |
|
| 7 |
| value |
0.00716 |
| scoring_system |
epss |
| scoring_elements |
0.72369 |
| published_at |
2026-04-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2023-5115 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
|
| fixed_packages |
|
| aliases |
CVE-2023-5115, GHSA-jpvw-p8pr-9g2x
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ujbp-cc1r-wfe9 |
|
| 43 |
| url |
VCID-v3h9-1t69-v7a3 |
| vulnerability_id |
VCID-v3h9-1t69-v7a3 |
| summary |
An Improper Output Neutralization for Logs flaw was found in Ansible when using the uri module, where sensitive data is exposed to content and json output. This flaw allows an attacker to access the logs or outputs of performed tasks to read keys used in playbooks from other users within the uri module. The highest threat from this vulnerability is to data confidentiality. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-14330 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00133 |
| scoring_system |
epss |
| scoring_elements |
0.32894 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00133 |
| scoring_system |
epss |
| scoring_elements |
0.32919 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00133 |
| scoring_system |
epss |
| scoring_elements |
0.32957 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00133 |
| scoring_system |
epss |
| scoring_elements |
0.32955 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00133 |
| scoring_system |
epss |
| scoring_elements |
0.32878 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00133 |
| scoring_system |
epss |
| scoring_elements |
0.33048 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.00133 |
| scoring_system |
epss |
| scoring_elements |
0.33015 |
| published_at |
2026-04-02T12:55:00Z |
|
| 7 |
| value |
0.00133 |
| scoring_system |
epss |
| scoring_elements |
0.32884 |
| published_at |
2026-04-01T12:55:00Z |
|
| 8 |
| value |
0.00133 |
| scoring_system |
epss |
| scoring_elements |
0.32925 |
| published_at |
2026-04-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-14330 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
| reference_url |
https://github.com/advisories/GHSA-785x-qw4v-6872 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
6.8 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-785x-qw4v-6872 |
|
| 23 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
6.8 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.9.12 |
| purl |
pkg:pypi/ansible@2.9.12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 8 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 9 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 10 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 11 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 12 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 13 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 14 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 15 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.12 |
|
| 1 |
|
|
| aliases |
CVE-2020-14330, GHSA-785x-qw4v-6872, PYSEC-2020-3
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-v3h9-1t69-v7a3 |
|
| 44 |
| url |
VCID-vdyk-rcxz-z7an |
| vulnerability_id |
VCID-vdyk-rcxz-z7an |
| summary |
The safe_eval function in Ansible before 1.5.4 does not properly restrict the code subset, which allows remote attackers to execute arbitrary code via crafted instructions. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-4657 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.02239 |
| scoring_system |
epss |
| scoring_elements |
0.84479 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.02239 |
| scoring_system |
epss |
| scoring_elements |
0.84518 |
| published_at |
2026-04-07T12:55:00Z |
|
| 2 |
| value |
0.02239 |
| scoring_system |
epss |
| scoring_elements |
0.84516 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.02239 |
| scoring_system |
epss |
| scoring_elements |
0.84494 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.02239 |
| scoring_system |
epss |
| scoring_elements |
0.84555 |
| published_at |
2026-04-13T12:55:00Z |
|
| 5 |
| value |
0.02239 |
| scoring_system |
epss |
| scoring_elements |
0.84559 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.02239 |
| scoring_system |
epss |
| scoring_elements |
0.84564 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.02239 |
| scoring_system |
epss |
| scoring_elements |
0.84545 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.02239 |
| scoring_system |
epss |
| scoring_elements |
0.8454 |
| published_at |
2026-04-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-4657 |
|
| 2 |
|
| 3 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
9.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@1.5.4 |
| purl |
pkg:pypi/ansible@1.5.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4b5u-b82x-zkc5 |
|
| 1 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 2 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 3 |
| vulnerability |
VCID-7sp5-368w-w3fd |
|
| 4 |
| vulnerability |
VCID-8pn7-4k42-6qeb |
|
| 5 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 6 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 7 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 8 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 9 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 10 |
| vulnerability |
VCID-c22m-1buy-3uc5 |
|
| 11 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 12 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 13 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 14 |
| vulnerability |
VCID-dtc3-3bxm-fkcg |
|
| 15 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 16 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 17 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 18 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 19 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 20 |
| vulnerability |
VCID-hfxe-jjf5-nqd1 |
|
| 21 |
| vulnerability |
VCID-hnjw-vehk-2fdd |
|
| 22 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 23 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 24 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 25 |
| vulnerability |
VCID-jwsu-7znb-kueg |
|
| 26 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 27 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 28 |
| vulnerability |
VCID-q4q1-aueh-sub2 |
|
| 29 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 30 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 31 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 32 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 33 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 34 |
| vulnerability |
VCID-s1r4-29kw-5kbg |
|
| 35 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 36 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 37 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 38 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 39 |
| vulnerability |
VCID-w6be-213x-1yh3 |
|
| 40 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 41 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 42 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 43 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 44 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 45 |
| vulnerability |
VCID-yc8n-wxb4-1uaz |
|
| 46 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 47 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 48 |
| vulnerability |
VCID-ynmp-3yfy-sfc1 |
|
| 49 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 50 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 51 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@1.5.4 |
|
|
| aliases |
CVE-2014-4657, GHSA-qg47-5px9-32g7, PYSEC-2020-199
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vdyk-rcxz-z7an |
|
| 45 |
| url |
VCID-w6be-213x-1yh3 |
| vulnerability_id |
VCID-w6be-213x-1yh3 |
| summary |
Ansible before 1.5.5 sets 0644 permissions for sources.list, which might allow local users to obtain sensitive credential information in opportunistic circumstances by reading a file that uses the "deb http://user:pass@server:port/" format. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-4659 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23782 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23838 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23799 |
| published_at |
2026-04-01T12:55:00Z |
|
| 3 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23821 |
| published_at |
2026-04-08T12:55:00Z |
|
| 4 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.2375 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23962 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23921 |
| published_at |
2026-04-02T12:55:00Z |
|
| 7 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23883 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23867 |
| published_at |
2026-04-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-4659 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@1.5.5 |
| purl |
pkg:pypi/ansible@1.5.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4b5u-b82x-zkc5 |
|
| 1 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 2 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 3 |
| vulnerability |
VCID-7sp5-368w-w3fd |
|
| 4 |
| vulnerability |
VCID-8pn7-4k42-6qeb |
|
| 5 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 6 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 7 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 8 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 9 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 10 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 11 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 12 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 13 |
| vulnerability |
VCID-dtc3-3bxm-fkcg |
|
| 14 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 15 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 16 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 17 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 18 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 19 |
| vulnerability |
VCID-hfxe-jjf5-nqd1 |
|
| 20 |
| vulnerability |
VCID-hnjw-vehk-2fdd |
|
| 21 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 22 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 23 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 24 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 25 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 26 |
| vulnerability |
VCID-q4q1-aueh-sub2 |
|
| 27 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 28 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 29 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 30 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 31 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 32 |
| vulnerability |
VCID-s1r4-29kw-5kbg |
|
| 33 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 34 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 35 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 36 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 37 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 38 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 39 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 40 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 41 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 42 |
| vulnerability |
VCID-yc8n-wxb4-1uaz |
|
| 43 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 44 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 45 |
| vulnerability |
VCID-ynmp-3yfy-sfc1 |
|
| 46 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 47 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 48 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@1.5.5 |
|
|
| aliases |
CVE-2014-4659, GHSA-6667-f46p-pg88, PYSEC-2020-201
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-w6be-213x-1yh3 |
|
| 46 |
| url |
VCID-whyk-3ynn-zyf4 |
| vulnerability_id |
VCID-whyk-3ynn-zyf4 |
| summary |
A flaw was found in the pipe lookup plugin of ansible. Arbitrary commands can be run, when the pipe lookup plugin uses subprocess.Popen() with shell=True, by overwriting ansible facts and the variable is not escaped by quote plugin. An attacker could take advantage and run arbitrary commands by overwriting the ansible facts. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-1734 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00131 |
| scoring_system |
epss |
| scoring_elements |
0.32653 |
| published_at |
2026-04-12T12:55:00Z |
|
| 1 |
| value |
0.00131 |
| scoring_system |
epss |
| scoring_elements |
0.32691 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.00131 |
| scoring_system |
epss |
| scoring_elements |
0.3269 |
| published_at |
2026-04-09T12:55:00Z |
|
| 3 |
| value |
0.00131 |
| scoring_system |
epss |
| scoring_elements |
0.32664 |
| published_at |
2026-04-08T12:55:00Z |
|
| 4 |
| value |
0.00131 |
| scoring_system |
epss |
| scoring_elements |
0.32616 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00131 |
| scoring_system |
epss |
| scoring_elements |
0.32795 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.00131 |
| scoring_system |
epss |
| scoring_elements |
0.32759 |
| published_at |
2026-04-02T12:55:00Z |
|
| 7 |
| value |
0.00131 |
| scoring_system |
epss |
| scoring_elements |
0.32624 |
| published_at |
2026-04-01T12:55:00Z |
|
| 8 |
| value |
0.00131 |
| scoring_system |
epss |
| scoring_elements |
0.32626 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-1734 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.4 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:L |
|
| 1 |
| value |
8.5 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:H/VI:H/VA:L/SC:H/SI:H/SA:L |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.7.17 |
| purl |
pkg:pypi/ansible@2.7.17 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 8 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 9 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 10 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 11 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 12 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 13 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 14 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 15 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 16 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 17 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 18 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 19 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 20 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 21 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 22 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.17 |
|
| 1 |
| url |
pkg:pypi/ansible@2.8.13 |
| purl |
pkg:pypi/ansible@2.8.13 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 8 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 9 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 10 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 11 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 12 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 13 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 14 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 15 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 16 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 17 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 18 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.13 |
|
| 2 |
| url |
pkg:pypi/ansible@2.9.11 |
| purl |
pkg:pypi/ansible@2.9.11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 8 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 9 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 10 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 11 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 12 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 13 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 14 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 15 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 16 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 17 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.11 |
|
| 3 |
| url |
pkg:pypi/ansible@2.10.0rc1 |
| purl |
pkg:pypi/ansible@2.10.0rc1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 3 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 4 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 5 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 6 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 7 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 8 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 9 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 10 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 11 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.10.0rc1 |
|
|
| aliases |
CVE-2020-1734, GHSA-h39q-95q5-9jfp, PYSEC-2020-6
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-whyk-3ynn-zyf4 |
|
| 47 |
| url |
VCID-wqm7-2ajr-6ue8 |
| vulnerability_id |
VCID-wqm7-2ajr-6ue8 |
| summary |
In ansible it was found that inventory variables are loaded from current working directory when running ad-hoc command which are under attacker's control, allowing to run arbitrary code as a result. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2018-10874 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00047 |
| scoring_system |
epss |
| scoring_elements |
0.14406 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00047 |
| scoring_system |
epss |
| scoring_elements |
0.14348 |
| published_at |
2026-04-13T12:55:00Z |
|
| 2 |
| value |
0.00047 |
| scoring_system |
epss |
| scoring_elements |
0.14404 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.00047 |
| scoring_system |
epss |
| scoring_elements |
0.14441 |
| published_at |
2026-04-11T12:55:00Z |
|
| 4 |
| value |
0.00047 |
| scoring_system |
epss |
| scoring_elements |
0.14492 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.00047 |
| scoring_system |
epss |
| scoring_elements |
0.14437 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00047 |
| scoring_system |
epss |
| scoring_elements |
0.14354 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.00047 |
| scoring_system |
epss |
| scoring_elements |
0.14546 |
| published_at |
2026-04-04T12:55:00Z |
|
| 8 |
| value |
0.00047 |
| scoring_system |
epss |
| scoring_elements |
0.14476 |
| published_at |
2026-04-02T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2018-10874 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
8.5 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
| reference_url |
https://usn.ubuntu.com/4072-1 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
8.5 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://usn.ubuntu.com/4072-1 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2018-10874 |
| reference_id |
CVE-2018-10874 |
| reference_type |
|
| scores |
| 0 |
| value |
4.6 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:L/AC:L/Au:N/C:P/I:P/A:P |
|
| 1 |
| value |
7.8 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
|
| 2 |
| value |
7.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
|
| 3 |
| value |
8.5 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 4 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2018-10874 |
|
| 35 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.0.0.1 |
| purl |
pkg:pypi/ansible@2.0.0.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 8 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 9 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 10 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 11 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 12 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 13 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 14 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 15 |
| vulnerability |
VCID-hfxe-jjf5-nqd1 |
|
| 16 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 17 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 18 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 19 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 20 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 21 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 22 |
| vulnerability |
VCID-q4q1-aueh-sub2 |
|
| 23 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 24 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 25 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 26 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 27 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 28 |
| vulnerability |
VCID-s1r4-29kw-5kbg |
|
| 29 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 30 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 31 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 32 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 33 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 34 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 35 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 36 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 37 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 38 |
| vulnerability |
VCID-yc8n-wxb4-1uaz |
|
| 39 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 40 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 41 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 42 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 43 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.0.0.1 |
|
| 1 |
| url |
pkg:pypi/ansible@2.4.6.0 |
| purl |
pkg:pypi/ansible@2.4.6.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 8 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 9 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 10 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 11 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 12 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 13 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 14 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 15 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 16 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 17 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 18 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 19 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 20 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 21 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 22 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 23 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 24 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 25 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 26 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 27 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 28 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 29 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 30 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 31 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 32 |
| vulnerability |
VCID-y91x-2rch-pkar |
|
| 33 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 34 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 35 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 36 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.4.6.0 |
|
| 2 |
| url |
pkg:pypi/ansible@2.5.6 |
| purl |
pkg:pypi/ansible@2.5.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b1pw-nusu-27c4 |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 11 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 12 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 13 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 14 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 15 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 16 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 17 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 18 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 19 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 20 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 21 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 22 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 23 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 24 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 25 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 26 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 27 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 28 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 29 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 30 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 31 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 32 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 33 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 34 |
| vulnerability |
VCID-y91x-2rch-pkar |
|
| 35 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 36 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 37 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 38 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.5.6 |
|
| 3 |
| url |
pkg:pypi/ansible@2.6.1 |
| purl |
pkg:pypi/ansible@2.6.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b1pw-nusu-27c4 |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-ckt2-us5z-pyef |
|
| 9 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 10 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 11 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 12 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 13 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 14 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 15 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 16 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 17 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 18 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 19 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 20 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 21 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 22 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 23 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 24 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 25 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 26 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 27 |
| vulnerability |
VCID-swpr-3qae-d7fe |
|
| 28 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 29 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 30 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 31 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 32 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 33 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 34 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 35 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 36 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 37 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 38 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 39 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.6.1 |
|
|
| aliases |
CVE-2018-10874, GHSA-3xvg-x47j-x75w, PYSEC-2018-81
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-wqm7-2ajr-6ue8 |
|
| 48 |
| url |
VCID-x5e2-7whc-v3fc |
| vulnerability_id |
VCID-x5e2-7whc-v3fc |
| summary |
A flaw was discovered in the way Ansible templating was implemented in versions before 2.6.18, 2.7.12 and 2.8.2, causing the possibility of information disclosure through unexpected variable substitution. By taking advantage of unintended variable substitution the content of any variable may be disclosed. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2019-10156 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.005 |
| scoring_system |
epss |
| scoring_elements |
0.65949 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00653 |
| scoring_system |
epss |
| scoring_elements |
0.70844 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00653 |
| scoring_system |
epss |
| scoring_elements |
0.7083 |
| published_at |
2026-04-01T12:55:00Z |
|
| 3 |
| value |
0.00653 |
| scoring_system |
epss |
| scoring_elements |
0.70837 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00653 |
| scoring_system |
epss |
| scoring_elements |
0.70862 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.00653 |
| scoring_system |
epss |
| scoring_elements |
0.70881 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00653 |
| scoring_system |
epss |
| scoring_elements |
0.70896 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00653 |
| scoring_system |
epss |
| scoring_elements |
0.70919 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.00653 |
| scoring_system |
epss |
| scoring_elements |
0.70904 |
| published_at |
2026-04-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2019-10156 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
| reference_url |
https://github.com/advisories/GHSA-grgm-pph5-j5h7 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.4 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-grgm-pph5-j5h7 |
|
| 25 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.4 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N |
|
| 1 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.6.18 |
| purl |
pkg:pypi/ansible@2.6.18 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-ckt2-us5z-pyef |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 11 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 12 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 13 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 14 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 15 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 16 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 17 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 18 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 19 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 20 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 21 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 22 |
| vulnerability |
VCID-swpr-3qae-d7fe |
|
| 23 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 24 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 25 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 26 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 27 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 28 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 29 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 30 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 31 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 32 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.6.18 |
|
| 1 |
| url |
pkg:pypi/ansible@2.7.12 |
| purl |
pkg:pypi/ansible@2.7.12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 3 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 4 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 5 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-ckt2-us5z-pyef |
|
| 9 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 10 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 11 |
| vulnerability |
VCID-dagf-buer-4ffr |
|
| 12 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 13 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 14 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 15 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 16 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 17 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 18 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 19 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 20 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 21 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 22 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 23 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 24 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 25 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 26 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 27 |
| vulnerability |
VCID-swpr-3qae-d7fe |
|
| 28 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 29 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 30 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 31 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 32 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 33 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 34 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 35 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 36 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 37 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 38 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 39 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.12 |
|
| 2 |
| url |
pkg:pypi/ansible@2.8.2 |
| purl |
pkg:pypi/ansible@2.8.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-7uu9-tj6b-quf6 |
|
| 3 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 4 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 5 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 6 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 7 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 8 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 9 |
| vulnerability |
VCID-ckt2-us5z-pyef |
|
| 10 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 11 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 12 |
| vulnerability |
VCID-dagf-buer-4ffr |
|
| 13 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 14 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 15 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 16 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 17 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 18 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 19 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 20 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 21 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 22 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 23 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 24 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 25 |
| vulnerability |
VCID-nukv-kkws-xkb1 |
|
| 26 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 27 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 28 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 29 |
| vulnerability |
VCID-swpr-3qae-d7fe |
|
| 30 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 31 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 32 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 33 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 34 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 35 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 36 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 37 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 38 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 39 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 40 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 41 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.2 |
|
|
| aliases |
CVE-2019-10156, GHSA-grgm-pph5-j5h7, PYSEC-2019-2
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-x5e2-7whc-v3fc |
|
| 49 |
| url |
VCID-x94k-nxyd-27gs |
| vulnerability_id |
VCID-x94k-nxyd-27gs |
| summary |
A flaw was found in the use of insufficiently random values in Ansible. Two random password lookups of the same length generate the equal value as the template caching action for the same file since no re-evaluation happens. The highest threat from this vulnerability would be that all passwords are exposed at once for the file. This flaw affects Ansible Engine versions before 2.9.6. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-10729 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00079 |
| scoring_system |
epss |
| scoring_elements |
0.23336 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00079 |
| scoring_system |
epss |
| scoring_elements |
0.2329 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.00079 |
| scoring_system |
epss |
| scoring_elements |
0.2339 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.00079 |
| scoring_system |
epss |
| scoring_elements |
0.23427 |
| published_at |
2026-04-11T12:55:00Z |
|
| 4 |
| value |
0.00079 |
| scoring_system |
epss |
| scoring_elements |
0.23408 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.00079 |
| scoring_system |
epss |
| scoring_elements |
0.23358 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00079 |
| scoring_system |
epss |
| scoring_elements |
0.23285 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.00079 |
| scoring_system |
epss |
| scoring_elements |
0.23464 |
| published_at |
2026-04-02T12:55:00Z |
|
| 8 |
| value |
0.00079 |
| scoring_system |
epss |
| scoring_elements |
0.23501 |
| published_at |
2026-04-04T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-10729 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
| reference_url |
https://github.com/advisories/GHSA-r6h7-5pq2-j77h |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.0 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
5.1 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-r6h7-5pq2-j77h |
|
| 23 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.0 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
5.1 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.9.6 |
| purl |
pkg:pypi/ansible@2.9.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3jej-4jyp-cqbt |
|
| 1 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 2 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 8 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 9 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 10 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 11 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 12 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 13 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 14 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 15 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 16 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 17 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 18 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 19 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 20 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 21 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 22 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 23 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 24 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 25 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 26 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 27 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 28 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.6 |
|
|
| aliases |
CVE-2020-10729, GHSA-r6h7-5pq2-j77h, PYSEC-2021-105
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-x94k-nxyd-27gs |
|
| 50 |
| url |
VCID-xw8r-fn6y-mbhp |
| vulnerability_id |
VCID-xw8r-fn6y-mbhp |
| summary |
A flaw was found in ansible. Credentials, such as secrets, are being disclosed in console log by default and not protected by no_log feature when using those modules. An attacker can take advantage of this information to steal those credentials. The highest threat from this vulnerability is to data confidentiality. Versions before ansible 2.9.18 are affected. |
| references |
| 0 |
|
| 1 |
|
| 2 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20191 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00037 |
| scoring_system |
epss |
| scoring_elements |
0.11217 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00037 |
| scoring_system |
epss |
| scoring_elements |
0.11266 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00037 |
| scoring_system |
epss |
| scoring_elements |
0.1121 |
| published_at |
2026-04-08T12:55:00Z |
|
| 3 |
| value |
0.00037 |
| scoring_system |
epss |
| scoring_elements |
0.11131 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00037 |
| scoring_system |
epss |
| scoring_elements |
0.11315 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.00037 |
| scoring_system |
epss |
| scoring_elements |
0.11255 |
| published_at |
2026-04-02T12:55:00Z |
|
| 6 |
| value |
0.00037 |
| scoring_system |
epss |
| scoring_elements |
0.11108 |
| published_at |
2026-04-01T12:55:00Z |
|
| 7 |
| value |
0.00037 |
| scoring_system |
epss |
| scoring_elements |
0.11243 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00037 |
| scoring_system |
epss |
| scoring_elements |
0.11277 |
| published_at |
2026-04-11T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-20191 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.8.19rc1 |
| purl |
pkg:pypi/ansible@2.8.19rc1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 8 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 9 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 10 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 11 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 12 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 13 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 14 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 15 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 16 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.19rc1 |
|
| 1 |
| url |
pkg:pypi/ansible@2.8.19 |
| purl |
pkg:pypi/ansible@2.8.19 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 8 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 9 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 10 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 11 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 12 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 13 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 14 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 15 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.19 |
|
| 2 |
| url |
pkg:pypi/ansible@2.9.18rc1 |
| purl |
pkg:pypi/ansible@2.9.18rc1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 8 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 9 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 10 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 11 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 12 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 13 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 14 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.18rc1 |
|
| 3 |
| url |
pkg:pypi/ansible@2.9.18 |
| purl |
pkg:pypi/ansible@2.9.18 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 3 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 4 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 5 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 6 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 7 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 8 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 9 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 10 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.18 |
|
| 4 |
|
|
| aliases |
CVE-2021-20191, GHSA-8f4m-hccc-8qph, PYSEC-2021-124
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-xw8r-fn6y-mbhp |
|
| 51 |
| url |
VCID-yc8n-wxb4-1uaz |
| vulnerability_id |
VCID-yc8n-wxb4-1uaz |
| summary |
Ansible before versions 2.1.4, 2.2.1 is vulnerable to an improper input validation in Ansible's handling of data sent from client systems. An attacker with control over a client system being managed by Ansible and the ability to send facts back to the Ansible server could use this flaw to execute arbitrary code on the Ansible server using the Ansible server privileges. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9587 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.04078 |
| scoring_system |
epss |
| scoring_elements |
0.88554 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.04078 |
| scoring_system |
epss |
| scoring_elements |
0.8855 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.04078 |
| scoring_system |
epss |
| scoring_elements |
0.88545 |
| published_at |
2026-04-08T12:55:00Z |
|
| 3 |
| value |
0.04078 |
| scoring_system |
epss |
| scoring_elements |
0.88527 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.04078 |
| scoring_system |
epss |
| scoring_elements |
0.88523 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.04078 |
| scoring_system |
epss |
| scoring_elements |
0.88506 |
| published_at |
2026-04-02T12:55:00Z |
|
| 6 |
| value |
0.04078 |
| scoring_system |
epss |
| scoring_elements |
0.88499 |
| published_at |
2026-04-01T12:55:00Z |
|
| 7 |
| value |
0.04078 |
| scoring_system |
epss |
| scoring_elements |
0.88561 |
| published_at |
2026-04-11T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9587 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
| reference_url |
https://github.com/advisories/GHSA-m956-frf4-m2wr |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
8.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
CRITICAL |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
9.2 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 3 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-m956-frf4-m2wr |
|
| 11 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
8.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
9.2 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
| reference_url |
https://www.exploit-db.com/exploits/41013 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
8.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
9.2 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://www.exploit-db.com/exploits/41013 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2016-9587 |
| reference_id |
CVE-2016-9587 |
| reference_type |
|
| scores |
| 0 |
| value |
9.3 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:M/Au:N/C:C/I:C/A:C |
|
| 1 |
| value |
6.6 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H |
|
| 2 |
| value |
8.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 3 |
| value |
9.2 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 4 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2016-9587 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.1.4.0 |
| purl |
pkg:pypi/ansible@2.1.4.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 8 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 9 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 10 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 11 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 12 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 13 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 14 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 15 |
| vulnerability |
VCID-hfxe-jjf5-nqd1 |
|
| 16 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 17 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 18 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 19 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 20 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 21 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 22 |
| vulnerability |
VCID-q4q1-aueh-sub2 |
|
| 23 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 24 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 25 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 26 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 27 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 28 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 29 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 30 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 31 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 32 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 33 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 34 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 35 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 36 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 37 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 38 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 39 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 40 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 41 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.1.4.0 |
|
| 1 |
| url |
pkg:pypi/ansible@2.2.1.0 |
| purl |
pkg:pypi/ansible@2.2.1.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 8 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 9 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 10 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 11 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 12 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 13 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 14 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 15 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 16 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 17 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 18 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 19 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 20 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 21 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 22 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 23 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 24 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 25 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 26 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 27 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 28 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 29 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 30 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 31 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 32 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 33 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 34 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 35 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 36 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 37 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 38 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.2.1.0 |
|
|
| aliases |
CVE-2016-9587, GHSA-m956-frf4-m2wr, PYSEC-2018-39
|
| risk_score |
10.0 |
| exploitability |
2.0 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-yc8n-wxb4-1uaz |
|
| 52 |
| url |
VCID-yeea-n94x-qqch |
| vulnerability_id |
VCID-yeea-n94x-qqch |
| summary |
A flaw was found in the Ansible Engine when using module_args. Tasks executed with check mode (--check-mode) do not properly neutralize sensitive data exposed in the event data. This flaw allows unauthorized users to read this data. The highest threat from this vulnerability is to confidentiality. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-14332 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00149 |
| scoring_system |
epss |
| scoring_elements |
0.35362 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00149 |
| scoring_system |
epss |
| scoring_elements |
0.35384 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00149 |
| scoring_system |
epss |
| scoring_elements |
0.3542 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00149 |
| scoring_system |
epss |
| scoring_elements |
0.35419 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00149 |
| scoring_system |
epss |
| scoring_elements |
0.35394 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00149 |
| scoring_system |
epss |
| scoring_elements |
0.35348 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00149 |
| scoring_system |
epss |
| scoring_elements |
0.35465 |
| published_at |
2026-04-04T12:55:00Z |
|
| 7 |
| value |
0.00149 |
| scoring_system |
epss |
| scoring_elements |
0.3544 |
| published_at |
2026-04-02T12:55:00Z |
|
| 8 |
| value |
0.00149 |
| scoring_system |
epss |
| scoring_elements |
0.35239 |
| published_at |
2026-04-01T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-14332 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
| reference_url |
https://github.com/advisories/GHSA-j667-c2hm-f2wp |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
6.8 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-j667-c2hm-f2wp |
|
| 23 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
6.8 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.8.14 |
| purl |
pkg:pypi/ansible@2.8.14 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 8 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 9 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 10 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 11 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 12 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 13 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 14 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 15 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 16 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 17 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.14 |
|
| 1 |
| url |
pkg:pypi/ansible@2.9.12 |
| purl |
pkg:pypi/ansible@2.9.12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 8 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 9 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 10 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 11 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 12 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 13 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 14 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 15 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.12 |
|
| 2 |
|
| 3 |
|
|
| aliases |
CVE-2020-14332, GHSA-j667-c2hm-f2wp, PYSEC-2020-4
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-yeea-n94x-qqch |
|
| 53 |
| url |
VCID-ykxk-6mpc-wkgt |
| vulnerability_id |
VCID-ykxk-6mpc-wkgt |
| summary |
In Ansible, all Ansible Engine versions up to ansible-engine 2.8.5, ansible-engine 2.7.13, ansible-engine 2.6.19, were logging at the DEBUG level which lead to a disclosure of credentials if a plugin used a library that logged credentials at the DEBUG level. This flaw does not affect Ansible modules, as those are executed in a separate process. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.6.20 |
| purl |
pkg:pypi/ansible@2.6.20 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 8 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 9 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 10 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 11 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 12 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 13 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 14 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 15 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 16 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 17 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 18 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 19 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 20 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 21 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 22 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 23 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 24 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 25 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 26 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 27 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 28 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.6.20 |
|
| 1 |
| url |
pkg:pypi/ansible@2.7.14 |
| purl |
pkg:pypi/ansible@2.7.14 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 3 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 4 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 5 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-dagf-buer-4ffr |
|
| 11 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 12 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 13 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 14 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 15 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 16 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 17 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 18 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 19 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 20 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 21 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 22 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 23 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 24 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 25 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 26 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 27 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 28 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 29 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 30 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 31 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 32 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 33 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 34 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 35 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.14 |
|
| 2 |
| url |
pkg:pypi/ansible@2.8.6 |
| purl |
pkg:pypi/ansible@2.8.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 3 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 4 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 5 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-dagf-buer-4ffr |
|
| 11 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 12 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 13 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 14 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 15 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 16 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 17 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 18 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 19 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 20 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 21 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 22 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 23 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 24 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 25 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 26 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 27 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 28 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 29 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 30 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 31 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 32 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 33 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 34 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.6 |
|
|
| aliases |
PYSEC-2019-74
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ykxk-6mpc-wkgt |
|
| 54 |
| url |
VCID-ynmp-3yfy-sfc1 |
| vulnerability_id |
VCID-ynmp-3yfy-sfc1 |
| summary |
The chroot, jail, and zone connection plugins in ansible before 1.9.2 allow local users to escape a restricted environment via a symlink attack. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-6240 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.0823 |
| published_at |
2026-04-04T12:55:00Z |
|
| 1 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08218 |
| published_at |
2026-04-13T12:55:00Z |
|
| 2 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08116 |
| published_at |
2026-04-01T12:55:00Z |
|
| 3 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08175 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08235 |
| published_at |
2026-04-12T12:55:00Z |
|
| 5 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08255 |
| published_at |
2026-04-11T12:55:00Z |
|
| 6 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08263 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08244 |
| published_at |
2026-04-08T12:55:00Z |
|
| 8 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.0818 |
| published_at |
2026-04-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-6240 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
8.5 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@1.9.2 |
| purl |
pkg:pypi/ansible@1.9.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 8 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 9 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 10 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 11 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 12 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 13 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 14 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 15 |
| vulnerability |
VCID-hfxe-jjf5-nqd1 |
|
| 16 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 17 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 18 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 19 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 20 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 21 |
| vulnerability |
VCID-q4q1-aueh-sub2 |
|
| 22 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 23 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 24 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 25 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 26 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 27 |
| vulnerability |
VCID-s1r4-29kw-5kbg |
|
| 28 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 29 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 30 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 31 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 32 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 33 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 34 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 35 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 36 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 37 |
| vulnerability |
VCID-yc8n-wxb4-1uaz |
|
| 38 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 39 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 40 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 41 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 42 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@1.9.2 |
|
|
| aliases |
CVE-2015-6240, GHSA-wwwh-47wp-m522, PYSEC-2017-3
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ynmp-3yfy-sfc1 |
|
| 55 |
| url |
VCID-yur3-am6j-w7ay |
| vulnerability_id |
VCID-yur3-am6j-w7ay |
| summary |
A flaw was found in Ansible Engine when using Ansible Vault for editing encrypted files. When a user executes "ansible-vault edit", another user on the same computer can read the old and new secret, as it is created in a temporary file with mkstemp and the returned file descriptor is closed and the method write_data is called to write the existing secret in the file. This method will delete the file before recreating it insecurely. All versions in 2.7.x, 2.8.x and 2.9.x branches are believed to be vulnerable. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-1740 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08182 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.082 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08221 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08229 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08212 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08059 |
| published_at |
2026-04-01T12:55:00Z |
|
| 6 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08196 |
| published_at |
2026-04-04T12:55:00Z |
|
| 7 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08149 |
| published_at |
2026-04-02T12:55:00Z |
|
| 8 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08143 |
| published_at |
2026-04-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-1740 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
| reference_url |
https://github.com/advisories/GHSA-vcg8-98q8-g7mj |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.7 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
5.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-vcg8-98q8-g7mj |
|
| 23 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.7 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
5.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2020-1740 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
1.9 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:L/AC:M/Au:N/C:P/I:N/A:N |
|
| 1 |
| value |
3.9 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:N |
|
| 2 |
| value |
4.7 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N |
|
| 3 |
| value |
5.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 4 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2020-1740 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
| 54 |
|
| 55 |
|
| 56 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.7.17 |
| purl |
pkg:pypi/ansible@2.7.17 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 8 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 9 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 10 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 11 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 12 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 13 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 14 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 15 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 16 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 17 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 18 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 19 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 20 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 21 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 22 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.17 |
|
| 1 |
| url |
pkg:pypi/ansible@2.8.0a1 |
| purl |
pkg:pypi/ansible@2.8.0a1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 3 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 4 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 5 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 11 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 12 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 13 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 14 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 15 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 16 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 17 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 18 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 19 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 20 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 21 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 22 |
| vulnerability |
VCID-nukv-kkws-xkb1 |
|
| 23 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 24 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 25 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 26 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 27 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 28 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 29 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 30 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 31 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 32 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 33 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 34 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 35 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 36 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 37 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.0a1 |
|
| 2 |
| url |
pkg:pypi/ansible@2.8.9 |
| purl |
pkg:pypi/ansible@2.8.9 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 5 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 6 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 7 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 8 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 9 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 10 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 11 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 12 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 13 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 14 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 15 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 16 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 17 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 18 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 19 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 20 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 21 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 22 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 23 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 24 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 25 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 26 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 27 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 28 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.9 |
|
| 3 |
| url |
pkg:pypi/ansible@2.8.11 |
| purl |
pkg:pypi/ansible@2.8.11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 8 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 9 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 10 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 11 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 12 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 13 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 14 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 15 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 16 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 17 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 18 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 19 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 20 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 21 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.11 |
|
| 4 |
| url |
pkg:pypi/ansible@2.9.6 |
| purl |
pkg:pypi/ansible@2.9.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3jej-4jyp-cqbt |
|
| 1 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 2 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 8 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 9 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 10 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 11 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 12 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 13 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 14 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 15 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 16 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 17 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 18 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 19 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 20 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 21 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 22 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 23 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 24 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 25 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 26 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 27 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 28 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.6 |
|
| 5 |
| url |
pkg:pypi/ansible@2.9.7 |
| purl |
pkg:pypi/ansible@2.9.7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 8 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 9 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 10 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 11 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 12 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 13 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 14 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 15 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 16 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 17 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 18 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 19 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.7 |
|
|
| aliases |
CVE-2020-1740, GHSA-vcg8-98q8-g7mj, PYSEC-2020-12
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-yur3-am6j-w7ay |
|
| 56 |
| url |
VCID-zmr4-652z-r3dm |
| vulnerability_id |
VCID-zmr4-652z-r3dm |
| summary |
Ansible before versions 2.3.1.0 and 2.4.0.0 fails to properly mark lookup-plugin results as unsafe. If an attacker could control the results of lookup() calls, they could inject Unicode strings to be parsed by the jinja2 templating system, resulting in code execution. By default, the jinja2 templating language is now marked as 'unsafe' and is not evaluated. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2017-7481 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01923 |
| scoring_system |
epss |
| scoring_elements |
0.83292 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.01923 |
| scoring_system |
epss |
| scoring_elements |
0.83348 |
| published_at |
2026-04-08T12:55:00Z |
|
| 2 |
| value |
0.01923 |
| scoring_system |
epss |
| scoring_elements |
0.83357 |
| published_at |
2026-04-09T12:55:00Z |
|
| 3 |
| value |
0.01923 |
| scoring_system |
epss |
| scoring_elements |
0.83372 |
| published_at |
2026-04-11T12:55:00Z |
|
| 4 |
| value |
0.01923 |
| scoring_system |
epss |
| scoring_elements |
0.83366 |
| published_at |
2026-04-12T12:55:00Z |
|
| 5 |
| value |
0.01923 |
| scoring_system |
epss |
| scoring_elements |
0.83324 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.01923 |
| scoring_system |
epss |
| scoring_elements |
0.83308 |
| published_at |
2026-04-02T12:55:00Z |
|
| 7 |
| value |
0.03507 |
| scoring_system |
epss |
| scoring_elements |
0.87622 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2017-7481 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
9.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
| reference_url |
https://usn.ubuntu.com/4072-1 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
9.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://usn.ubuntu.com/4072-1 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2017-7481 |
| reference_id |
CVE-2017-7481 |
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:L/Au:N/C:P/I:P/A:P |
|
| 1 |
| value |
5.3 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N |
|
| 2 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 3 |
| value |
9.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 4 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2017-7481 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.1.6.0 |
| purl |
pkg:pypi/ansible@2.1.6.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 8 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 9 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 10 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 11 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 12 |
| vulnerability |
VCID-fetz-42jf-nqe8 |
|
| 13 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 14 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 15 |
| vulnerability |
VCID-hfxe-jjf5-nqd1 |
|
| 16 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 17 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 18 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 19 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 20 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 21 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 22 |
| vulnerability |
VCID-q4q1-aueh-sub2 |
|
| 23 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 24 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 25 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 26 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 27 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 28 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 29 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 30 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 31 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 32 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 33 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 34 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 35 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 36 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 37 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 38 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 39 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 40 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 41 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.1.6.0 |
|
| 1 |
| url |
pkg:pypi/ansible@2.2.3.0 |
| purl |
pkg:pypi/ansible@2.2.3.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 8 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 9 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 10 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 11 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 12 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 13 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 14 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 15 |
| vulnerability |
VCID-jhxm-379u-subt |
|
| 16 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 17 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 18 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 19 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 20 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 21 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 22 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 23 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 24 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 25 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 26 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 27 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 28 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 29 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 30 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 31 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 32 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 33 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 34 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 35 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 36 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 37 |
| vulnerability |
VCID-zmr4-652z-r3dm |
|
| 38 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.2.3.0 |
|
| 2 |
| url |
pkg:pypi/ansible@2.3.1.0 |
| purl |
pkg:pypi/ansible@2.3.1.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1d7-4rje-ayf9 |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 11 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 12 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 13 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 14 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 15 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 16 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 17 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 18 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 19 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 20 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 21 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 22 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 23 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 24 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 25 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 26 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 27 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 28 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 29 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 30 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 31 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 32 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 33 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 34 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 35 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 36 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 37 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.3.1.0 |
|
| 3 |
| url |
pkg:pypi/ansible@2.4.0.0 |
| purl |
pkg:pypi/ansible@2.4.0.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3jh2-znva-2bb6 |
|
| 1 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 2 |
| vulnerability |
VCID-5hwt-gkgx-jqb4 |
|
| 3 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 4 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 5 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 6 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 7 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 8 |
| vulnerability |
VCID-c1d7-4rje-ayf9 |
|
| 9 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 10 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 11 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 12 |
| vulnerability |
VCID-drt9-vx5r-akgm |
|
| 13 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 14 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 15 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 16 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 17 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 18 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 19 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 20 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 21 |
| vulnerability |
VCID-puq1-z5h7-pkdg |
|
| 22 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 23 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 24 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 25 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 26 |
| vulnerability |
VCID-rknj-nkgs-wyg2 |
|
| 27 |
| vulnerability |
VCID-t6db-buke-nfhf |
|
| 28 |
| vulnerability |
VCID-tdp4-h4ht-pqhs |
|
| 29 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 30 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 31 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 32 |
| vulnerability |
VCID-wqm7-2ajr-6ue8 |
|
| 33 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 34 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 35 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 36 |
| vulnerability |
VCID-y91x-2rch-pkar |
|
| 37 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 38 |
| vulnerability |
VCID-ykxk-6mpc-wkgt |
|
| 39 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 40 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.4.0.0 |
|
|
| aliases |
CVE-2017-7481, GHSA-w578-j992-554x, PYSEC-2018-41
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zmr4-652z-r3dm |
|
| 57 |
| url |
VCID-zzzs-scbg-bbe9 |
| vulnerability_id |
VCID-zzzs-scbg-bbe9 |
| summary |
A flaw was found in the Ansible Engine when the fetch module is used. An attacker could intercept the module, inject a new path, and then choose a new destination path on the controller node. All versions in 2.7.x, 2.8.x and 2.9.x branches are believed to be vulnerable. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-1735 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00155 |
| scoring_system |
epss |
| scoring_elements |
0.36287 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00155 |
| scoring_system |
epss |
| scoring_elements |
0.36308 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00155 |
| scoring_system |
epss |
| scoring_elements |
0.36344 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00155 |
| scoring_system |
epss |
| scoring_elements |
0.36338 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00155 |
| scoring_system |
epss |
| scoring_elements |
0.36206 |
| published_at |
2026-04-01T12:55:00Z |
|
| 5 |
| value |
0.00155 |
| scoring_system |
epss |
| scoring_elements |
0.36268 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00155 |
| scoring_system |
epss |
| scoring_elements |
0.36433 |
| published_at |
2026-04-04T12:55:00Z |
|
| 7 |
| value |
0.00155 |
| scoring_system |
epss |
| scoring_elements |
0.364 |
| published_at |
2026-04-02T12:55:00Z |
|
| 8 |
| value |
0.00155 |
| scoring_system |
epss |
| scoring_elements |
0.36316 |
| published_at |
2026-04-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-1735 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
| reference_url |
https://github.com/advisories/GHSA-gfr2-qpxh-qj9m |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.6 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
4.6 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/advisories/GHSA-gfr2-qpxh-qj9m |
|
| 23 |
| reference_url |
https://github.com/ansible/ansible |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.6 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N |
|
| 1 |
| value |
4.6 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/ansible/ansible |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2020-1735 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
3.6 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:L/AC:L/Au:N/C:P/I:P/A:N |
|
| 1 |
| value |
4.2 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N |
|
| 2 |
| value |
4.6 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N |
|
| 3 |
| value |
4.6 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N |
|
| 4 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2020-1735 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
| 54 |
|
| 55 |
|
| 56 |
|
| 57 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/ansible@2.7.17 |
| purl |
pkg:pypi/ansible@2.7.17 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 8 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 9 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 10 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 11 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 12 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 13 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 14 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 15 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 16 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 17 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 18 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 19 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 20 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 21 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 22 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.17 |
|
| 1 |
| url |
pkg:pypi/ansible@2.7.18 |
| purl |
pkg:pypi/ansible@2.7.18 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 8 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 9 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 10 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 11 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 12 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 13 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 14 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 15 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 16 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 17 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 18 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 19 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 20 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.7.18 |
|
| 2 |
| url |
pkg:pypi/ansible@2.8.0a1 |
| purl |
pkg:pypi/ansible@2.8.0a1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-a49n-tvnt-p3df |
|
| 3 |
| vulnerability |
VCID-ae1r-yq1g-rkem |
|
| 4 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 5 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 6 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 7 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 8 |
| vulnerability |
VCID-d4ka-dk4p-kfhb |
|
| 9 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 10 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 11 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 12 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 13 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 14 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 15 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 16 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 17 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 18 |
| vulnerability |
VCID-jnmu-c8dt-5yb6 |
|
| 19 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 20 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 21 |
| vulnerability |
VCID-kb5h-116p-33b4 |
|
| 22 |
| vulnerability |
VCID-nukv-kkws-xkb1 |
|
| 23 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 24 |
| vulnerability |
VCID-r6bb-p28b-8fcn |
|
| 25 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 26 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 27 |
| vulnerability |
VCID-uhg5-zpzt-e3gz |
|
| 28 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 29 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 30 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 31 |
| vulnerability |
VCID-x5e2-7whc-v3fc |
|
| 32 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 33 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 34 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 35 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 36 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 37 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.0a1 |
|
| 3 |
| url |
pkg:pypi/ansible@2.8.9 |
| purl |
pkg:pypi/ansible@2.8.9 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 5 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 6 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 7 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 8 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 9 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 10 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 11 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 12 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 13 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 14 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 15 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 16 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 17 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 18 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 19 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 20 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 21 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 22 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 23 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 24 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 25 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 26 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 27 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 28 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.9 |
|
| 4 |
| url |
pkg:pypi/ansible@2.8.12 |
| purl |
pkg:pypi/ansible@2.8.12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 8 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 9 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 10 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 11 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 12 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 13 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 14 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 15 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 16 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 17 |
| vulnerability |
VCID-x94k-nxyd-27gs |
|
| 18 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 19 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.8.12 |
|
| 5 |
| url |
pkg:pypi/ansible@2.9.6 |
| purl |
pkg:pypi/ansible@2.9.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3jej-4jyp-cqbt |
|
| 1 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 2 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 3 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 4 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 5 |
| vulnerability |
VCID-b8zs-br97-57av |
|
| 6 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 7 |
| vulnerability |
VCID-d7ez-s7qb-p3ay |
|
| 8 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 9 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 10 |
| vulnerability |
VCID-ezaq-tqd3-4yd1 |
|
| 11 |
| vulnerability |
VCID-ezux-6buh-h7h7 |
|
| 12 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 13 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 14 |
| vulnerability |
VCID-h1n3-cmte-eugf |
|
| 15 |
| vulnerability |
VCID-hqar-fca3-cbht |
|
| 16 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 17 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 18 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 19 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 20 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 21 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 22 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 23 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 24 |
| vulnerability |
VCID-xg2f-12w4-yqge |
|
| 25 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 26 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
| 27 |
| vulnerability |
VCID-yur3-am6j-w7ay |
|
| 28 |
| vulnerability |
VCID-zzzs-scbg-bbe9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.6 |
|
| 6 |
| url |
pkg:pypi/ansible@2.9.8 |
| purl |
pkg:pypi/ansible@2.9.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4yvf-k192-9fca |
|
| 1 |
| vulnerability |
VCID-682j-e2pu-1uee |
|
| 2 |
| vulnerability |
VCID-atun-stks-4kcb |
|
| 3 |
| vulnerability |
VCID-axc3-wcsk-q3eg |
|
| 4 |
| vulnerability |
VCID-c1xg-s3kx-gkft |
|
| 5 |
| vulnerability |
VCID-dzdx-wae5-8ydy |
|
| 6 |
| vulnerability |
VCID-e3z2-ydhb-gqfg |
|
| 7 |
| vulnerability |
VCID-fj2p-7wkh-1fhq |
|
| 8 |
| vulnerability |
VCID-geaa-6dxx-tbcw |
|
| 9 |
| vulnerability |
VCID-jrxz-b168-7ug4 |
|
| 10 |
| vulnerability |
VCID-js7k-ptm9-2yh1 |
|
| 11 |
| vulnerability |
VCID-qbdk-hxhg-wbh4 |
|
| 12 |
| vulnerability |
VCID-rdwq-93d6-c7b4 |
|
| 13 |
| vulnerability |
VCID-rg5d-st3d-nbah |
|
| 14 |
| vulnerability |
VCID-ujbp-cc1r-wfe9 |
|
| 15 |
| vulnerability |
VCID-v3h9-1t69-v7a3 |
|
| 16 |
| vulnerability |
VCID-whyk-3ynn-zyf4 |
|
| 17 |
| vulnerability |
VCID-xw8r-fn6y-mbhp |
|
| 18 |
| vulnerability |
VCID-yeea-n94x-qqch |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@2.9.8 |
|
|
| aliases |
CVE-2020-1735, GHSA-gfr2-qpxh-qj9m, PYSEC-2020-7
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zzzs-scbg-bbe9 |
|