Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-xak4-qbwg-z3b7

Summary lib/ansible/playbook/__init__.py in Ansible 1.2.x before 1.2.3, when playbook does not run due to an error, allows local users to overwrite arbitrary files via a symlink attack on a retry file with a predictable name in /var/tmp/ansible/.

Aliases

alias	CVE-2013-4260

alias	GHSA-pcqv-c46v-2p4v

alias	PYSEC-2013-2

Fixed_packages

url	pkg:deb/debian/ansible@0?distro=trixie
purl	pkg:deb/debian/ansible@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ansible@0%3Fdistro=trixie

url	pkg:deb/debian/ansible@2.10.7%2Bmerged%2Bbase%2B2.10.17%2Bdfsg-0%2Bdeb11u1?distro=trixie
purl	pkg:deb/debian/ansible@2.10.7%2Bmerged%2Bbase%2B2.10.17%2Bdfsg-0%2Bdeb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ansible@2.10.7%252Bmerged%252Bbase%252B2.10.17%252Bdfsg-0%252Bdeb11u1%3Fdistro=trixie

url	pkg:deb/debian/ansible@7.7.0%2Bdfsg-3%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/ansible@7.7.0%2Bdfsg-3%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ansible@7.7.0%252Bdfsg-3%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/ansible@12.0.0%2Bdfsg-0%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/ansible@12.0.0%2Bdfsg-0%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ansible@12.0.0%252Bdfsg-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ansible@13.4.0%2Bdfsg-1?distro=trixie
purl	pkg:deb/debian/ansible@13.4.0%2Bdfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ansible@13.4.0%252Bdfsg-1%3Fdistro=trixie

url pkg:pypi/ansible@1.2.3

purl pkg:pypi/ansible@1.2.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4b5u-b82x-zkc5

vulnerability	VCID-4yvf-k192-9fca

vulnerability	VCID-682j-e2pu-1uee

vulnerability	VCID-7sp5-368w-w3fd

vulnerability	VCID-8pn7-4k42-6qeb

vulnerability	VCID-ae1r-yq1g-rkem

vulnerability	VCID-atun-stks-4kcb

vulnerability	VCID-axc3-wcsk-q3eg

vulnerability	VCID-b8zs-br97-57av

vulnerability	VCID-bc3y-qwxc-p3dx

vulnerability	VCID-c1xg-s3kx-gkft

vulnerability	VCID-c22m-1buy-3uc5

vulnerability	VCID-d4ka-dk4p-kfhb

vulnerability	VCID-d7ez-s7qb-p3ay

vulnerability	VCID-drt9-vx5r-akgm

vulnerability	VCID-dtc3-3bxm-fkcg

vulnerability	VCID-e3z2-ydhb-gqfg

vulnerability	VCID-ezaq-tqd3-4yd1

vulnerability	VCID-fetz-42jf-nqe8

vulnerability	VCID-fj2p-7wkh-1fhq

vulnerability	VCID-geaa-6dxx-tbcw

vulnerability	VCID-hfxe-jjf5-nqd1

vulnerability	VCID-hnjw-vehk-2fdd

vulnerability	VCID-hqar-fca3-cbht

vulnerability	VCID-jhxm-379u-subt

vulnerability	VCID-js7k-ptm9-2yh1

vulnerability	VCID-jwsu-7znb-kueg

vulnerability	VCID-kb5h-116p-33b4

vulnerability	VCID-puq1-z5h7-pkdg

vulnerability	VCID-q4q1-aueh-sub2

vulnerability	VCID-qbdk-hxhg-wbh4

vulnerability	VCID-r6bb-p28b-8fcn

vulnerability	VCID-rdwq-93d6-c7b4

vulnerability	VCID-rg5d-st3d-nbah

vulnerability	VCID-rknj-nkgs-wyg2

vulnerability	VCID-s1r4-29kw-5kbg

vulnerability	VCID-t6db-buke-nfhf

vulnerability	VCID-tdp4-h4ht-pqhs

vulnerability	VCID-ujbp-cc1r-wfe9

vulnerability	VCID-v3h9-1t69-v7a3

vulnerability	VCID-vdyk-rcxz-z7an

vulnerability	VCID-w6be-213x-1yh3

vulnerability	VCID-whyk-3ynn-zyf4

vulnerability	VCID-wqm7-2ajr-6ue8

vulnerability	VCID-x5e2-7whc-v3fc

vulnerability	VCID-x94k-nxyd-27gs

vulnerability	VCID-xak4-qbwg-z3b7

vulnerability	VCID-xw8r-fn6y-mbhp

vulnerability	VCID-yc8n-wxb4-1uaz

vulnerability	VCID-yeea-n94x-qqch

vulnerability	VCID-ykxk-6mpc-wkgt

vulnerability	VCID-ynmp-3yfy-sfc1

vulnerability	VCID-yur3-am6j-w7ay

vulnerability	VCID-zmr4-652z-r3dm

vulnerability	VCID-zzzs-scbg-bbe9

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@1.2.3

url pkg:pypi/ansible@1.3.0

purl pkg:pypi/ansible@1.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4b5u-b82x-zkc5

vulnerability	VCID-4yvf-k192-9fca

vulnerability	VCID-682j-e2pu-1uee

vulnerability	VCID-7sp5-368w-w3fd

vulnerability	VCID-8pn7-4k42-6qeb

vulnerability	VCID-ae1r-yq1g-rkem

vulnerability	VCID-atun-stks-4kcb

vulnerability	VCID-axc3-wcsk-q3eg

vulnerability	VCID-b8zs-br97-57av

vulnerability	VCID-bc3y-qwxc-p3dx

vulnerability	VCID-c1xg-s3kx-gkft

vulnerability	VCID-c22m-1buy-3uc5

vulnerability	VCID-d4ka-dk4p-kfhb

vulnerability	VCID-d7ez-s7qb-p3ay

vulnerability	VCID-drt9-vx5r-akgm

vulnerability	VCID-dtc3-3bxm-fkcg

vulnerability	VCID-e3z2-ydhb-gqfg

vulnerability	VCID-ezaq-tqd3-4yd1

vulnerability	VCID-fetz-42jf-nqe8

vulnerability	VCID-fj2p-7wkh-1fhq

vulnerability	VCID-geaa-6dxx-tbcw

vulnerability	VCID-hfxe-jjf5-nqd1

vulnerability	VCID-hnjw-vehk-2fdd

vulnerability	VCID-hqar-fca3-cbht

vulnerability	VCID-jhxm-379u-subt

vulnerability	VCID-js7k-ptm9-2yh1

vulnerability	VCID-jwsu-7znb-kueg

vulnerability	VCID-kb5h-116p-33b4

vulnerability	VCID-puq1-z5h7-pkdg

vulnerability	VCID-q4q1-aueh-sub2

vulnerability	VCID-qbdk-hxhg-wbh4

vulnerability	VCID-r6bb-p28b-8fcn

vulnerability	VCID-rdwq-93d6-c7b4

vulnerability	VCID-rg5d-st3d-nbah

vulnerability	VCID-rknj-nkgs-wyg2

vulnerability	VCID-s1r4-29kw-5kbg

vulnerability	VCID-t6db-buke-nfhf

vulnerability	VCID-tdp4-h4ht-pqhs

vulnerability	VCID-ujbp-cc1r-wfe9

vulnerability	VCID-v3h9-1t69-v7a3

vulnerability	VCID-vdyk-rcxz-z7an

vulnerability	VCID-w6be-213x-1yh3

vulnerability	VCID-whyk-3ynn-zyf4

vulnerability	VCID-wqm7-2ajr-6ue8

vulnerability	VCID-x5e2-7whc-v3fc

vulnerability	VCID-x94k-nxyd-27gs

vulnerability	VCID-xw8r-fn6y-mbhp

vulnerability	VCID-yc8n-wxb4-1uaz

vulnerability	VCID-yeea-n94x-qqch

vulnerability	VCID-ykxk-6mpc-wkgt

vulnerability	VCID-ynmp-3yfy-sfc1

vulnerability	VCID-yur3-am6j-w7ay

vulnerability	VCID-zmr4-652z-r3dm

vulnerability	VCID-zzzs-scbg-bbe9

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@1.3.0

Affected_packages

url pkg:pypi/ansible@1.2

purl pkg:pypi/ansible@1.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2v57-zem6-47hq

vulnerability	VCID-4b5u-b82x-zkc5

vulnerability	VCID-4yvf-k192-9fca

vulnerability	VCID-682j-e2pu-1uee

vulnerability	VCID-7sp5-368w-w3fd

vulnerability	VCID-8pn7-4k42-6qeb

vulnerability	VCID-ae1r-yq1g-rkem

vulnerability	VCID-atun-stks-4kcb

vulnerability	VCID-axc3-wcsk-q3eg

vulnerability	VCID-b2r5-fb4m-jbcr

vulnerability	VCID-b8zs-br97-57av

vulnerability	VCID-bc3y-qwxc-p3dx

vulnerability	VCID-c1xg-s3kx-gkft

vulnerability	VCID-c22m-1buy-3uc5

vulnerability	VCID-d4ka-dk4p-kfhb

vulnerability	VCID-d7ez-s7qb-p3ay

vulnerability	VCID-drt9-vx5r-akgm

vulnerability	VCID-dtc3-3bxm-fkcg

vulnerability	VCID-e3z2-ydhb-gqfg

vulnerability	VCID-ezaq-tqd3-4yd1

vulnerability	VCID-fetz-42jf-nqe8

vulnerability	VCID-fj2p-7wkh-1fhq

vulnerability	VCID-geaa-6dxx-tbcw

vulnerability	VCID-hfxe-jjf5-nqd1

vulnerability	VCID-hnjw-vehk-2fdd

vulnerability	VCID-hqar-fca3-cbht

vulnerability	VCID-jhxm-379u-subt

vulnerability	VCID-js7k-ptm9-2yh1

vulnerability	VCID-jwsu-7znb-kueg

vulnerability	VCID-kb5h-116p-33b4

vulnerability	VCID-puq1-z5h7-pkdg

vulnerability	VCID-q4q1-aueh-sub2

vulnerability	VCID-qbdk-hxhg-wbh4

vulnerability	VCID-r6bb-p28b-8fcn

vulnerability	VCID-rdwq-93d6-c7b4

vulnerability	VCID-rg5d-st3d-nbah

vulnerability	VCID-rknj-nkgs-wyg2

vulnerability	VCID-rsry-fw45-9yev

vulnerability	VCID-s1r4-29kw-5kbg

vulnerability	VCID-t6db-buke-nfhf

vulnerability	VCID-tdp4-h4ht-pqhs

vulnerability	VCID-ujbp-cc1r-wfe9

vulnerability	VCID-v3h9-1t69-v7a3

vulnerability	VCID-vdyk-rcxz-z7an

vulnerability	VCID-w6be-213x-1yh3

vulnerability	VCID-whyk-3ynn-zyf4

vulnerability	VCID-wqm7-2ajr-6ue8

vulnerability	VCID-x5e2-7whc-v3fc

vulnerability	VCID-x94k-nxyd-27gs

vulnerability	VCID-xak4-qbwg-z3b7

vulnerability	VCID-xw8r-fn6y-mbhp

vulnerability	VCID-yc8n-wxb4-1uaz

vulnerability	VCID-yeea-n94x-qqch

vulnerability	VCID-ykxk-6mpc-wkgt

vulnerability	VCID-ynmp-3yfy-sfc1

vulnerability	VCID-yur3-am6j-w7ay

vulnerability	VCID-zmr4-652z-r3dm

vulnerability	VCID-zzzs-scbg-bbe9

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@1.2

url pkg:pypi/ansible@1.2.1

purl pkg:pypi/ansible@1.2.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2v57-zem6-47hq

vulnerability	VCID-4b5u-b82x-zkc5

vulnerability	VCID-4yvf-k192-9fca

vulnerability	VCID-682j-e2pu-1uee

vulnerability	VCID-7sp5-368w-w3fd

vulnerability	VCID-8pn7-4k42-6qeb

vulnerability	VCID-ae1r-yq1g-rkem

vulnerability	VCID-atun-stks-4kcb

vulnerability	VCID-axc3-wcsk-q3eg

vulnerability	VCID-b8zs-br97-57av

vulnerability	VCID-bc3y-qwxc-p3dx

vulnerability	VCID-c1xg-s3kx-gkft

vulnerability	VCID-c22m-1buy-3uc5

vulnerability	VCID-d4ka-dk4p-kfhb

vulnerability	VCID-d7ez-s7qb-p3ay

vulnerability	VCID-drt9-vx5r-akgm

vulnerability	VCID-dtc3-3bxm-fkcg

vulnerability	VCID-e3z2-ydhb-gqfg

vulnerability	VCID-ezaq-tqd3-4yd1

vulnerability	VCID-fetz-42jf-nqe8

vulnerability	VCID-fj2p-7wkh-1fhq

vulnerability	VCID-geaa-6dxx-tbcw

vulnerability	VCID-hfxe-jjf5-nqd1

vulnerability	VCID-hnjw-vehk-2fdd

vulnerability	VCID-hqar-fca3-cbht

vulnerability	VCID-jhxm-379u-subt

vulnerability	VCID-js7k-ptm9-2yh1

vulnerability	VCID-jwsu-7znb-kueg

vulnerability	VCID-kb5h-116p-33b4

vulnerability	VCID-puq1-z5h7-pkdg

vulnerability	VCID-q4q1-aueh-sub2

vulnerability	VCID-qbdk-hxhg-wbh4

vulnerability	VCID-r6bb-p28b-8fcn

vulnerability	VCID-rdwq-93d6-c7b4

vulnerability	VCID-rg5d-st3d-nbah

vulnerability	VCID-rknj-nkgs-wyg2

vulnerability	VCID-rsry-fw45-9yev

vulnerability	VCID-s1r4-29kw-5kbg

vulnerability	VCID-t6db-buke-nfhf

vulnerability	VCID-tdp4-h4ht-pqhs

vulnerability	VCID-ujbp-cc1r-wfe9

vulnerability	VCID-v3h9-1t69-v7a3

vulnerability	VCID-vdyk-rcxz-z7an

vulnerability	VCID-w6be-213x-1yh3

vulnerability	VCID-whyk-3ynn-zyf4

vulnerability	VCID-wqm7-2ajr-6ue8

vulnerability	VCID-x5e2-7whc-v3fc

vulnerability	VCID-x94k-nxyd-27gs

vulnerability	VCID-xak4-qbwg-z3b7

vulnerability	VCID-xw8r-fn6y-mbhp

vulnerability	VCID-yc8n-wxb4-1uaz

vulnerability	VCID-yeea-n94x-qqch

vulnerability	VCID-ykxk-6mpc-wkgt

vulnerability	VCID-ynmp-3yfy-sfc1

vulnerability	VCID-yur3-am6j-w7ay

vulnerability	VCID-zmr4-652z-r3dm

vulnerability	VCID-zzzs-scbg-bbe9

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@1.2.1

url pkg:pypi/ansible@1.2.2

purl pkg:pypi/ansible@1.2.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2v57-zem6-47hq

vulnerability	VCID-4b5u-b82x-zkc5

vulnerability	VCID-4yvf-k192-9fca

vulnerability	VCID-682j-e2pu-1uee

vulnerability	VCID-7sp5-368w-w3fd

vulnerability	VCID-8pn7-4k42-6qeb

vulnerability	VCID-ae1r-yq1g-rkem

vulnerability	VCID-atun-stks-4kcb

vulnerability	VCID-axc3-wcsk-q3eg

vulnerability	VCID-b8zs-br97-57av

vulnerability	VCID-bc3y-qwxc-p3dx

vulnerability	VCID-c1xg-s3kx-gkft

vulnerability	VCID-c22m-1buy-3uc5

vulnerability	VCID-d4ka-dk4p-kfhb

vulnerability	VCID-d7ez-s7qb-p3ay

vulnerability	VCID-drt9-vx5r-akgm

vulnerability	VCID-dtc3-3bxm-fkcg

vulnerability	VCID-e3z2-ydhb-gqfg

vulnerability	VCID-ezaq-tqd3-4yd1

vulnerability	VCID-fetz-42jf-nqe8

vulnerability	VCID-fj2p-7wkh-1fhq

vulnerability	VCID-geaa-6dxx-tbcw

vulnerability	VCID-hfxe-jjf5-nqd1

vulnerability	VCID-hnjw-vehk-2fdd

vulnerability	VCID-hqar-fca3-cbht

vulnerability	VCID-jhxm-379u-subt

vulnerability	VCID-js7k-ptm9-2yh1

vulnerability	VCID-jwsu-7znb-kueg

vulnerability	VCID-kb5h-116p-33b4

vulnerability	VCID-puq1-z5h7-pkdg

vulnerability	VCID-q4q1-aueh-sub2

vulnerability	VCID-qbdk-hxhg-wbh4

vulnerability	VCID-r6bb-p28b-8fcn

vulnerability	VCID-rdwq-93d6-c7b4

vulnerability	VCID-rg5d-st3d-nbah

vulnerability	VCID-rknj-nkgs-wyg2

vulnerability	VCID-s1r4-29kw-5kbg

vulnerability	VCID-t6db-buke-nfhf

vulnerability	VCID-tdp4-h4ht-pqhs

vulnerability	VCID-ujbp-cc1r-wfe9

vulnerability	VCID-v3h9-1t69-v7a3

vulnerability	VCID-vdyk-rcxz-z7an

vulnerability	VCID-w6be-213x-1yh3

vulnerability	VCID-whyk-3ynn-zyf4

vulnerability	VCID-wqm7-2ajr-6ue8

vulnerability	VCID-x5e2-7whc-v3fc

vulnerability	VCID-x94k-nxyd-27gs

vulnerability	VCID-xak4-qbwg-z3b7

vulnerability	VCID-xw8r-fn6y-mbhp

vulnerability	VCID-yc8n-wxb4-1uaz

vulnerability	VCID-yeea-n94x-qqch

vulnerability	VCID-ykxk-6mpc-wkgt

vulnerability	VCID-ynmp-3yfy-sfc1

vulnerability	VCID-yur3-am6j-w7ay

vulnerability	VCID-zmr4-652z-r3dm

vulnerability	VCID-zzzs-scbg-bbe9

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@1.2.2

url pkg:pypi/ansible@1.2.3

purl pkg:pypi/ansible@1.2.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4b5u-b82x-zkc5

vulnerability	VCID-4yvf-k192-9fca

vulnerability	VCID-682j-e2pu-1uee

vulnerability	VCID-7sp5-368w-w3fd

vulnerability	VCID-8pn7-4k42-6qeb

vulnerability	VCID-ae1r-yq1g-rkem

vulnerability	VCID-atun-stks-4kcb

vulnerability	VCID-axc3-wcsk-q3eg

vulnerability	VCID-b8zs-br97-57av

vulnerability	VCID-bc3y-qwxc-p3dx

vulnerability	VCID-c1xg-s3kx-gkft

vulnerability	VCID-c22m-1buy-3uc5

vulnerability	VCID-d4ka-dk4p-kfhb

vulnerability	VCID-d7ez-s7qb-p3ay

vulnerability	VCID-drt9-vx5r-akgm

vulnerability	VCID-dtc3-3bxm-fkcg

vulnerability	VCID-e3z2-ydhb-gqfg

vulnerability	VCID-ezaq-tqd3-4yd1

vulnerability	VCID-fetz-42jf-nqe8

vulnerability	VCID-fj2p-7wkh-1fhq

vulnerability	VCID-geaa-6dxx-tbcw

vulnerability	VCID-hfxe-jjf5-nqd1

vulnerability	VCID-hnjw-vehk-2fdd

vulnerability	VCID-hqar-fca3-cbht

vulnerability	VCID-jhxm-379u-subt

vulnerability	VCID-js7k-ptm9-2yh1

vulnerability	VCID-jwsu-7znb-kueg

vulnerability	VCID-kb5h-116p-33b4

vulnerability	VCID-puq1-z5h7-pkdg

vulnerability	VCID-q4q1-aueh-sub2

vulnerability	VCID-qbdk-hxhg-wbh4

vulnerability	VCID-r6bb-p28b-8fcn

vulnerability	VCID-rdwq-93d6-c7b4

vulnerability	VCID-rg5d-st3d-nbah

vulnerability	VCID-rknj-nkgs-wyg2

vulnerability	VCID-s1r4-29kw-5kbg

vulnerability	VCID-t6db-buke-nfhf

vulnerability	VCID-tdp4-h4ht-pqhs

vulnerability	VCID-ujbp-cc1r-wfe9

vulnerability	VCID-v3h9-1t69-v7a3

vulnerability	VCID-vdyk-rcxz-z7an

vulnerability	VCID-w6be-213x-1yh3

vulnerability	VCID-whyk-3ynn-zyf4

vulnerability	VCID-wqm7-2ajr-6ue8

vulnerability	VCID-x5e2-7whc-v3fc

vulnerability	VCID-x94k-nxyd-27gs

vulnerability	VCID-xak4-qbwg-z3b7

vulnerability	VCID-xw8r-fn6y-mbhp

vulnerability	VCID-yc8n-wxb4-1uaz

vulnerability	VCID-yeea-n94x-qqch

vulnerability	VCID-ykxk-6mpc-wkgt

vulnerability	VCID-ynmp-3yfy-sfc1

vulnerability	VCID-yur3-am6j-w7ay

vulnerability	VCID-zmr4-652z-r3dm

vulnerability	VCID-zzzs-scbg-bbe9

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/ansible@1.2.3

References

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-4260

reference_id

reference_type

scores

value	0.00082
scoring_system	epss
scoring_elements	0.24144
published_at	2026-04-01T12:55:00Z

value	0.00082
scoring_system	epss
scoring_elements	0.24138
published_at	2026-04-16T12:55:00Z

value	0.00082
scoring_system	epss
scoring_elements	0.24123
published_at	2026-04-13T12:55:00Z

value	0.00082
scoring_system	epss
scoring_elements	0.2418
published_at	2026-04-12T12:55:00Z

value	0.00082
scoring_system	epss
scoring_elements	0.24222
published_at	2026-04-11T12:55:00Z

value	0.00082
scoring_system	epss
scoring_elements	0.24203
published_at	2026-04-09T12:55:00Z

value	0.00082
scoring_system	epss
scoring_elements	0.24158
published_at	2026-04-08T12:55:00Z

value	0.00082
scoring_system	epss
scoring_elements	0.24092
published_at	2026-04-07T12:55:00Z

value	0.00082
scoring_system	epss
scoring_elements	0.24307
published_at	2026-04-04T12:55:00Z

value	0.00082
scoring_system	epss
scoring_elements	0.24274
published_at	2026-04-02T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-4260

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=998227

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://bugzilla.redhat.com/show_bug.cgi?id=998227

reference_url

https://exchange.xforce.ibmcloud.com/vulnerabilities/86898

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://exchange.xforce.ibmcloud.com/vulnerabilities/86898

reference_url

https://github.com/ansible/ansible

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/ansible/ansible

reference_url

https://github.com/ansible/ansible/commit/d5948d59fc863fcec6efa62fa2791928ffc5a6d1

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/ansible/ansible/commit/d5948d59fc863fcec6efa62fa2791928ffc5a6d1

reference_url	https://github.com/ansible/ansible/commit/ed3e4aff84fb32005d8e91dbf0fd7b134a482486
reference_id
reference_type
scores
url	https://github.com/ansible/ansible/commit/ed3e4aff84fb32005d8e91dbf0fd7b134a482486

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2013-2.yaml

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2013-2.yaml

reference_url

https://groups.google.com/forum/#%21topic/ansible-project/UVDYW0HGcNg

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://groups.google.com/forum/#%21topic/ansible-project/UVDYW0HGcNg

reference_url

https://groups.google.com/forum/#!topic/ansible-project/UVDYW0HGcNg

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://groups.google.com/forum/#!topic/ansible-project/UVDYW0HGcNg

reference_url

http://www.ansible.com/security

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.ansible.com/security

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2013-4260

reference_id

CVE-2013-4260

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2013-4260

reference_url

https://github.com/advisories/GHSA-pcqv-c46v-2p4v

reference_id

GHSA-pcqv-c46v-2p4v

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-pcqv-c46v-2p4v

Weaknesses

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

cwe_id	264
name	Permissions, Privileges, and Access Controls
description	Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

cwe_id	281
name	Improper Preservation of Permissions
description	The product does not preserve permissions or incorrectly preserves permissions when copying, restoring, or sharing objects, which can cause them to have less restrictive permissions than intended.

Exploits

Severity_range_score 4.0 - 6.9

Exploitability 0.5

Weighted_severity 6.2

Risk_score 3.1

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xak4-qbwg-z3b7

Vulnerability Instance