| Max CVSS | 6.6 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-14330 | 2.1 |
An Improper Output Neutralization for Logs flaw was found in Ansible when using the uri module, where sensitive data is exposed to content and json output. This flaw allows an attacker to access the logs or outputs of performed tasks to read keys use
|
11-11-2022 - 02:47 | 11-09-2020 - 18:15 | |
| CVE-2020-14365 | 6.6 |
A flaw was found in the Ansible Engine, in ansible-engine 2.8.x before 2.8.15 and ansible-engine 2.9.x before 2.9.13, when installing packages using the dnf module. GPG signatures are ignored during installation even when disable_gpg_check is set to
|
05-04-2022 - 15:29 | 23-09-2020 - 13:15 | |
| CVE-2020-14332 | 2.1 |
A flaw was found in the Ansible Engine when using module_args. Tasks executed with check mode (--check-mode) do not properly neutralize sensitive data exposed in the event data. This flaw allows unauthorized users to read this data. The highest threa
|
05-04-2022 - 15:28 | 11-09-2020 - 18:15 | |
| CVE-2020-1736 | 2.1 |
A flaw was found in Ansible Engine when a file is moved using atomic_move primitive as the file mode cannot be specified. This sets the destination files world-readable if the destination file does not exist and if the file exists, the file could be
|
05-04-2022 - 15:00 | 16-03-2020 - 16:15 | |
| CVE-2020-14365 | 6.6 |
A flaw was found in the Ansible Engine, in ansible-engine 2.8.x before 2.8.15 and ansible-engine 2.9.x before 2.9.13, when installing packages using the dnf module. GPG signatures are ignored during installation even when disable_gpg_check is set to
|
29-09-2020 - 18:39 | 23-09-2020 - 13:15 | |
| CVE-2020-14365 | 6.6 |
A flaw was found in the Ansible Engine, in ansible-engine 2.8.x before 2.8.15 and ansible-engine 2.9.x before 2.9.13, when installing packages using the dnf module. GPG signatures are ignored during installation even when disable_gpg_check is set to
|
29-09-2020 - 18:39 | 23-09-2020 - 13:15 |