{"url":"http://public2.vulnerablecode.io/api/packages/39472?format=json","purl":"pkg:pypi/ansible-core@2.11.3","type":"pypi","namespace":"","name":"ansible-core","version":"2.11.3","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"2.14.4","latest_non_vulnerable_version":"2.16.3","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/36719?format=json","vulnerability_id":"VCID-d5za-vy85-j3he","summary":"An information disclosure flaw was found in ansible-core due to a failure to respect the ANSIBLE_NO_LOG configuration in some scenarios. It was discovered that information is still included in the output in certain tasks, such as loop items. Depending on the task, this issue may include sensitive information, such as decrypted secret values.","references":[{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0733","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/errata/RHSA-2024:0733"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2246","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2246"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3043","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3043"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2024-0690","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/security/cve/CVE-2024-0690"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2259013","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2259013"},{"reference_url":"https://github.com/ansible/ansible","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/ansible/ansible"},{"reference_url":"https://github.com/ansible/ansible/commit/6935c8e303440addd3871ecf8e04bde61080b032","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/ansible/ansible/commit/6935c8e303440addd3871ecf8e04bde61080b032"},{"reference_url":"https://github.com/ansible/ansible/commit/78db3a3de6b40fb52d216685ae7cb903c609c3e1","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/ansible/ansible/commit/78db3a3de6b40fb52d216685ae7cb903c609c3e1"},{"reference_url":"https://github.com/ansible/ansible/commit/b9a03bbf5a63459468baf8895ff74a62e9be4532","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/ansible/ansible/commit/b9a03bbf5a63459468baf8895ff74a62e9be4532"},{"reference_url":"https://github.com/ansible/ansible/commit/beb04bc2642c208447c5a936f94310528a1946b1","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/ansible/ansible/commit/beb04bc2642c208447c5a936f94310528a1946b1"},{"reference_url":"https://github.com/ansible/ansible/pull/82565","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://github.com/ansible/ansible/pull/82565"},{"reference_url":"https://github.com/pypa/advisory-database/tree/main/vulns/ansible-core/PYSEC-2024-36.yaml","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/pypa/advisory-database/tree/main/vulns/ansible-core/PYSEC-2024-36.yaml"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IZQGCRDSZL7ONCULMB6ZUHOE4L44KIBP","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IZQGCRDSZL7ONCULMB6ZUHOE4L44KIBP"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VDYSWOCPZMNRU5LWKIEBW4WGWLMTU7WQ","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VDYSWOCPZMNRU5LWKIEBW4WGWLMTU7WQ"},{"reference_url":"https://security.netapp.com/advisory/ntap-20250117-0001","reference_id":"","reference_type":"","scores":[],"url":"https://security.netapp.com/advisory/ntap-20250117-0001"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-0690","reference_id":"CVE-2024-0690","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-0690"},{"reference_url":"https://github.com/advisories/GHSA-h24r-m9qc-pvpg","reference_id":"GHSA-h24r-m9qc-pvpg","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-h24r-m9qc-pvpg"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/39583?format=json","purl":"pkg:pypi/ansible-core@2.14.4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/ansible-core@2.14.4"},{"url":"http://public2.vulnerablecode.io/api/packages/68784?format=json","purl":"pkg:pypi/ansible-core@2.14.14","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/ansible-core@2.14.14"},{"url":"http://public2.vulnerablecode.io/api/packages/39582?format=json","purl":"pkg:pypi/ansible-core@2.15.9","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/ansible-core@2.15.9"},{"url":"http://public2.vulnerablecode.io/api/packages/39581?format=json","purl":"pkg:pypi/ansible-core@2.16.3","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/ansible-core@2.16.3"}],"aliases":["CVE-2024-0690","GHSA-h24r-m9qc-pvpg","PYSEC-2024-36"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d5za-vy85-j3he"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/ansible-core@2.11.3"}