Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:pypi/ansible@2.7
purl pkg:pypi/ansible@2.7
Tags Ghost
Next non-vulnerable version 12.0.0
Latest non-vulnerable version 12.2.0
Risk 4.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-rknj-nkgs-wyg2
Aliases:
CVE-2018-16837
GHSA-hwrm-63v2-42g4
PYSEC-2018-44
Ansible "User" module leaks any data which is passed on as a parameter to ssh-keygen. This could lean in undesirable situations such as passphrases credentials passed as a parameter for the ssh-keygen executable. Showing those credentials in clear text form for every user which have access just to the process list.
2.7.1
Affected by 45 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T12:48:07.176043+00:00 GitLab Importer Affected by VCID-rknj-nkgs-wyg2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/ansible/CVE-2018-16837.yml 38.0.0