Vulnerabilities > Redhat > Ansible Inside

DATE CVE VULNERABILITY TITLE RISK
2024-10-16 CVE-2024-10033 Cross-site Scripting vulnerability in Redhat products
A vulnerability was found in aap-gateway.
network
low complexity
redhat CWE-79
6.1
2024-02-06 CVE-2024-0690 Improper Encoding or Escaping of Output vulnerability in multiple products
An information disclosure flaw was found in ansible-core due to a failure to respect the ANSIBLE_NO_LOG configuration in some scenarios.
local
low complexity
redhat fedoraproject CWE-116
5.5
2023-12-18 CVE-2023-5115 Absolute Path Traversal vulnerability in multiple products
An absolute path traversal attack exists in the Ansible automation platform.
network
low complexity
redhat debian CWE-36
6.3
2023-12-12 CVE-2023-5764 A template injection flaw was found in Ansible where a user's controller internal templating operations may remove the unsafe designation from template data.
local
low complexity
redhat fedoraproject
7.8
2023-10-04 CVE-2023-3971 Cross-site Scripting vulnerability in Redhat products
An HTML injection flaw was found in Controller in the user interface settings.
network
low complexity
redhat CWE-79
5.4
2023-10-04 CVE-2023-4380 Information Exposure Through Log Files vulnerability in Redhat products
A logic flaw exists in Ansible Automation platform.
network
low complexity
redhat CWE-532
6.3