Latest version: v11.1.0
| CVE/PVE | Vulnerability ID | Advisory | Affected versions | Severity | Severity Score |
|---|---|---|---|---|---|
| CVE-2019-14856 | 42884 |
Affected versions of Ansible are vulnerable to CVE-2019-14856: The fi… |
|
MEDIUM | 6.5 |
| CVE-2019-14858 | 54153 |
A vulnerability was found in Ansible engine and Ansible tower. When a… |
|
MEDIUM | 5.5 |
| CVE-2019-14904 | 42881 |
Ansible versions 2.7.16, 2.8.8 and 2.9.3 include a fix for CVE-2019-1… |
|
HIGH | 7.3 |
| CVE-2019-10206 | 42886 |
Ansible 2.6.19, 2.7.13 and 2.8.4 include a fix for CVE-2019-10206: An… |
|
MEDIUM | 6.5 |
| CVE-2020-10685 | 54331 |
A flaw was found in Ansible Engine affecting Ansible Engine versions … |
|
MEDIUM | 5.5 |
| CVE-2020-1735 | 42877 |
Ansible versions 2.7.17, 2.8.9 and 2.9.6 include a fix for CVE-2020-1… |
|
MEDIUM | 4.6 |
| CVE-2020-1739 | 42871 |
Ansible versions 2.7.17, 2.8.9 and 2.9.6 include a fix for CVE-2020-1… |
|
LOW | 3.9 |
| CVE-2020-1733 | 42879 |
Ansible versions 2.7.17, 2.8.11 and 2.9.7 include a fix for CVE-2020-… |
|
MEDIUM | 5.0 |
| CVE-2019-14904 | 68097 |
A vulnerability in versions of the Ansible solaris_zone module permit… |
|
HIGH | 7.3 |
| CVE-2018-16859 | 54011 |
Execution of Ansible playbooks on Windows platforms with PowerShell S… |
|
MEDIUM | 4.4 |
| CVE-2019-14905 | 54155 |
A vulnerability was found in Ansible Engine versions 2.9.x before 2.9… |
|
MEDIUM | 5.6 |
| CVE-2020-10684 | 42864 |
Ansible versions 2.7.17, 2.8.9 and 2.9.6 include a fix for CVE-2020-1… |
|
HIGH | 7.1 |
| CVE-2020-1736 | 42875 |
Ansible versions 2.7.17, 2.8.9 and 2.9.6 include a fix for CVE-2020-1… |
|
LOW | 3.3 |
| CVE-2020-1738 | 42873 |
Ansible versions 2.7.17, 2.8.9 and 2.9.6 include a fix for CVE-2020-1… |
|
LOW | 3.9 |
| CVE-2019-14864 | 42882 |
Ansible versions 2.7.15, 2.8.7 and 2.9.1 include a fix for CVE-2019-1… |
|
MEDIUM | 6.5 |
| CVE-2019-10156 | 42887 |
Ansible 2.6.18, 2.7.12 and 2.8.2 include a fix for CVE-2019-10156: A … |
|
MEDIUM | 5.4 |
| CVE-2019-3828 | 42888 |
Ansible 2.5.15, 2.6.14 and 2.7.8 include a fix for CVE-2019-3828: Ans… |
|
MEDIUM | 4.2 |
| CVE-2018-10875 | 54289 |
A flaw was found in ansible. ansible.cfg is read from the current wor… |
|
HIGH | 7.8 |
| CVE-2018-16876 | 42889 |
Ansible 2.5.14, 2.6.11 and 2.7.5 include a fix for CVE-2018-16876: An… |
|
MEDIUM | 5.3 |
| CVE-2021-20228 | 54286 |
A flaw was found in the Ansible Engine 2.9.18, where sensitive info i… |
|
HIGH | 7.5 |
| CVE-2020-1753 | 54240 |
A security flaw was found in Ansible Engine, all Ansible 2.7.x versio… |
|
MEDIUM | 5.5 |
| CVE-2020-1737 | 54191 |
A flaw was found in Ansible 2.7.17 and prior, 2.8.9 and prior, and 2.… |
|
HIGH | 7.8 |
| CVE-2020-1746 | 54284 |
A flaw was found in the Ansible Engine affecting Ansible Engine versi… |
|
MEDIUM | 5.0 |
| CVE-2019-14846 | 54288 |
In Ansible, all Ansible Engine versions up to ansible-engine 2.8.5, a… |
|
HIGH | 7.8 |
| CVE-2018-16837 | 54010 |
Ansible "User" module leaks any data which is passed on as a paramete… |
|
HIGH | 7.8 |
| CVE-2020-14365 | 54224 |
A flaw was found in the Ansible Engine, in ansible-engine affected ve… |
|
HIGH | 7.1 |
| CVE-2021-20180 | 54426 |
A flaw was found in ansible module where credentials are disclosed in… |
|
MEDIUM | 5.5 |
| CVE-2018-10855 | 54290 |
Ansible 2.5 prior to 2.5.5, and 2.4 prior to 2.4.5, do not honor the … |
|
MEDIUM | 5.9 |
| CVE-2016-9587 | 33285 |
Ansible versions 2.1.4 and 2.2.1 include a fix for CVE-2016-9587: Ans… |
|
HIGH | 8.1 |
| CVE-2016-3096 | 25627 |
Ansible 1.9.6 and 2.0.2 include a fix for CVE-2016-3096: The create_s… |
|
HIGH | 7.8 |
| CVE-2020-14332 | 54226 |
A flaw was found in the Ansible Engine when using module_args. Tasks … |
|
MEDIUM | 5.5 |
| CVE-2021-20178 | 42858 |
Ansible 2.9.18 includes a fix for CVE-2021-20178: A flaw was found in… |
|
MEDIUM | 5.5 |
| CVE-2020-10691 | 54172 |
An archive traversal flaw was found in all ansible-engine versions 2.… |
|
MEDIUM | 5.2 |
| CVE-2019-10217 | 42885 |
Ansible 2.8.4 includes a fix for CVE-2019-10217: A flaw was found in … |
|
MEDIUM | 6.5 |
| CVE-2022-3697 | 54564 |
A flaw was found in Ansible in the amazon.aws collection when using t… |
|
HIGH | 7.5 |
| CVE-2017-7481 | 34941 |
Ansible before versions 2.3.1.0 and 2.4.0.0 fails to properly mark lo… |
|
CRITICAL | 9.8 |
| CVE-2017-7466 | 42890 |
Ansible 2.3 includes a fix for CVE-2017-7466: Ansible before version … |
|
HIGH | 8.0 |
| CVE-2016-8628 | 42915 |
Ansible 2.2.0 includes a fix for CVE-2016-8628: Ansible before versio… |
|
CRITICAL | 9.1 |
| CVE-2020-25635 | 54230 |
A flaw was found in Ansible Base when using the aws_ssm connection pl… |
|
MEDIUM | 5.5 |
| CVE-2020-25636 | 54229 |
A flaw was found in Ansible Base when using the aws_ssm connection pl… |
|
HIGH | 7.1 |
| PVE-2023-99974 | 60834 |
Ansible 2.1.0.0 include a security fix: Information disclosure of sen… |
|
- | - |
| CVE-2015-3908 | 25625 |
Ansible before 1.9.2 does not verify that the server hostname matches… |
|
MEDIUM | 4.3 |
| CVE-2015-6240 | 42917 |
Ansible 1.9.2 includes a fix for CVE-2015-6240: The chroot, jail, and… |
|
HIGH | 7.8 |
| PVE-2021-25624 | 25624 |
ansible 1.8.3 fixes a security bug related to the default permissions… |
|
HIDDEN | X.Y |
| PVE-2021-25623 | 25623 |
ansible 1.7.1 contains a security fix to disallow specifying 'args:' … |
|
- | - |
| PVE-2021-25622 | 25622 |
Ansible 1.7.0 adds path checking for relative/escaped tar filenames … |
|
HIDDEN | X.Y |
| PVE-2022-45329 | 45329 |
Ansible 1.7.0 avoids templating raw lookup strings. |
|
HIDDEN | X.Y |
| CVE-2014-4967 | 25621 |
ansible 1.6.7 contains two security fixes: * Strip lookup calls ou… |
|
CRITICAL | 9.8 |
| CVE-2014-4966 | 42334 |
Ansible before 1.6.7 does not prevent inventory data with "{{" and "l… |
|
CRITICAL | 9.8 |
| CVE-2014-3498 | 25620 |
Ansible 1.6.6 includes a fix for CVE-2014-3498: The user module in an… |
|
HIGH | 8.8 |
| CVE-2014-4678 | 25619 |
Ansible 1.6.4 includes a fix for CVE-2014-4678: The safe_eval functio… |
|
CRITICAL | 9.8 |
| CVE-2014-4659 | 42854 |
Ansible 1.5.5 includes a fix for CVE-2014-4659: Ansible before 1.5.5 … |
|
MEDIUM | 5.5 |
| CVE-2014-4660 | 42918 |
Ansible 1.5.5 includes a fix for CVE-2014-4660: Ansible before 1.5.5 … |
|
MEDIUM | 5.5 |
| CVE-2014-4658 | 25618 |
Ansible 1.5.5 includes a fix for CVE-2014-4658: The vault subsystem i… |
|
MEDIUM | 5.5 |
| CVE-2014-2686 | 42919 |
Ansible 1.5.4 includes a fix for CVE-2014-2686: Ansible prior to 1.5.… |
|
HIGH | 7.5 |
| CVE-2014-4657 | 25617 |
Ansible 1.5.4 includes a fix for CVE-2014-4657: The safe_eval functio… |
|
CRITICAL | 9.8 |
| CVE-2013-4260 | 25616 |
Ansible 1.2.3 includes local security fixes for predictable file loca… |
|
LOW | 3.3 |
| CVE-2013-4259 | 42920 |
Ansible 1.2.3 includes a fix for CVE-2013-4259: runner/connection_plu… |
|
LOW | 1.9 |
| CVE-2013-2233 | 42921 |
Ansible 1.2.1 includes a fix for CVE-2013-2233: Ansible before 1.2.1 … |
|
HIGH | 7.4 |
| CVE-2020-10729 | 54283 |
A flaw was found in the use of insufficiently random values in Ansibl… |
|
MEDIUM | 5.5 |
| CVE-2021-3620 | 54421 |
Ansible is an IT automation system that handles configuration managem… |
|
MEDIUM | 5.5 |
| CVE-2020-1734 | 54189 |
A flaw was found in the pipe lookup plugin of ansible. Arbitrary comm… |
|
HIGH | 7.4 |
| CVE-2016-8647 | 54118 |
An input validation vulnerability was found in Ansible's mysql_user m… |
|
MEDIUM | 4.9 |
| CVE-2020-14330 | 54219 |
An Improper Output Neutralization for Logs flaw was found in Ansible … |
|
MEDIUM | 5.5 |