CVSS: 9.8EPSS: 4%CPEs: 1EXPL: 0CVE-2014-4967 – Gentoo Linux Security Advisory 201411-09
https://notcve.org/view.php?id=CVE-2014-4967
22 Jul 2014 — Multiple argument injection vulnerabilities in Ansible before 1.6.7 allow remote attackers to execute arbitrary code by leveraging access to an Ansible managed host and providing a crafted fact, as demonstrated by a fact with (1) a trailing " src=" clause, (2) a trailing " temp=" clause, or (3) a trailing " validate=" clause accompanied by a shell command. Múltiples vulnerabilidades de inyección de argumentos en Ansible versiones anteriores a 1.6.7, permiten a atacantes remotos ejecutar código arbitrario al... • http://www.ocert.org/advisories/ocert-2014-004.html • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •
CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2013-4259
https://notcve.org/view.php?id=CVE-2013-4259
16 Sep 2013 — runner/connection_plugins/ssh.py in Ansible before 1.2.3, when using ControlPersist, allows local users to redirect a ssh session via a symlink attack on a socket file with a predictable name in /tmp/. runner/connection_plugins/ssh.py en Ansible anteriores a v1.2.3 al usar ControlPersist, permite a usuarios locales redirigir una sesión ssh a través de un ataque de enlaces simbólicos sobre un archivo de socket con un nombre predecible en /tmp/. • http://www.ansible.com/security • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 4.4EPSS: 0%CPEs: 3EXPL: 0CVE-2013-4260
https://notcve.org/view.php?id=CVE-2013-4260
16 Sep 2013 — lib/ansible/playbook/__init__.py in Ansible 1.2.x before 1.2.3, when playbook does not run due to an error, allows local users to overwrite arbitrary files via a symlink attack on a retry file with a predictable name in /var/tmp/ansible/. lib/ansible/playbook/__init__.py en Ansible 1.2.x (anteriores a 1.2.3), cuando playbook no funciona debido a un error, permite a usuarios locales sobreescribir archivos a discrección a través de un ataque symlink en un archivo de reintento con un nombre predecible en /var/... • http://www.ansible.com/security • CWE-264: Permissions, Privileges, and Access Controls •