Search for packages
| purl | pkg:pypi/ansible@2.6.0.dev0 |
| Tags | Ghost |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-2989-kmjf-aaas
Aliases: CVE-2018-16876 GHSA-j569-fghw-f9rx PYSEC-2019-141 |
ansible before versions 2.5.14, 2.6.11, 2.7.5 is vulnerable to a information disclosure flaw in vvv+ mode with no_log on that can lead to leakage of sensible data. |
Affected by 35 other vulnerabilities. Affected by 38 other vulnerabilities. |
|
VCID-56gr-ex7m-aaap
Aliases: CVE-2018-16859 GHSA-v735-2pp6-h86r PYSEC-2018-60 |
Execution of Ansible playbooks on Windows platforms with PowerShell ScriptBlock logging and Module logging enabled can allow for 'become' passwords to appear in EventLogs in plaintext. A local user with administrator privileges on the machine can view these logs and discover the plaintext password. Ansible Engine 2.8 and older are believed to be vulnerable. |
Affected by 35 other vulnerabilities. Affected by 38 other vulnerabilities. Affected by 37 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2024-09-17T22:26:56.096968+00:00 | GitLab Importer | Affected by | VCID-2989-kmjf-aaas | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/ansible/CVE-2018-16876.yml | 34.0.1 |
| 2024-09-17T22:26:55.835873+00:00 | GitLab Importer | Affected by | VCID-56gr-ex7m-aaap | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/ansible/CVE-2018-16859.yml | 34.0.1 |
| 2024-01-03T17:52:52.684492+00:00 | GitLab Importer | Affected by | VCID-2989-kmjf-aaas | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/ansible/CVE-2018-16876.yml | 34.0.0rc1 |
| 2024-01-03T17:52:52.435149+00:00 | GitLab Importer | Affected by | VCID-56gr-ex7m-aaap | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/ansible/CVE-2018-16859.yml | 34.0.0rc1 |