VulnerableCode Vulnerability Details - VCID-8krf-mb4d-aken

Search for vulnerabilities

Vulnerability details: VCID-8krf-mb4d-aken

Essentials
Severities (0)
References (3)
Severity details (0)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-8krf-mb4d-aken
Aliases	PYSEC-2020-180
Summary	A flaw was found in the solaris_zone module from the Ansible Community modules. When setting the name for the zone on the Solaris host, the zone name is checked by listing the process with the 'ps' bare command on the remote machine. An attacker could take advantage of this flaw by crafting the name of the zone and executing arbitrary commands in the remote host. Ansible Engine 2.7.15, 2.8.7, and 2.9.2 as well as previous versions are affected.
Status	Published
Exploitability	0.5
Weighted Severity	0.0
Risk	None
Affected and Fixed Packages	Package Details

Weaknesses (0)

There are no known CWE.

System	Score	Found at
There are no known severity scores.

Reference id	Reference type	URL
		https://bugzilla.redhat.com/show_bug.cgi?id=1776944
		https://github.com/ansible/ansible/pull/65686
		https://lists.debian.org/debian-lts-announce/2021/01/msg00023.html

No exploits are available.

There are no known vectors.

No EPSS data available for this vulnerability.

Date	Actor	Action	Source	VulnerableCode Version
2025-08-01T08:36:02.830006+00:00	PyPI Importer	Import	https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip	37.0.0