VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Redhat
>
Ansible Tower
> 3.5.6
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2021-09-22
CVE-2021-3583
Code Injection vulnerability in Redhat Ansible Automation Platform and Ansible Tower
A flaw was found in Ansible, where a user's controller is vulnerable to template injection.
local
low complexity
redhat
CWE-94
7.1
7.1
2021-05-27
CVE-2020-14327
Unspecified vulnerability in Redhat Ansible Tower
A Server-side request forgery (SSRF) flaw was found in Ansible Tower in versions before 3.6.5 and before 3.7.2.
local
low complexity
redhat
5.5
5.5
2021-05-27
CVE-2020-14328
Unspecified vulnerability in Redhat Ansible Tower
A flaw was found in Ansible Tower in versions before 3.7.2.
local
low complexity
redhat
3.3
3.3
2021-05-27
CVE-2020-14329
Unspecified vulnerability in Redhat Ansible Tower
A data exposure flaw was found in Ansible Tower in versions before 3.7.2, where sensitive data can be exposed from the /api/v2/labels/ endpoint.
local
low complexity
redhat
3.3
3.3
2021-04-01
CVE-2021-3447
A flaw was found in several ansible modules, where parameters containing credentials, such as secrets, were being logged in plain-text on managed nodes, as well as being made visible on the controller node when run in verbose mode.
local
low complexity
redhat
fedoraproject
5.5
5.5
2021-03-09
CVE-2021-20253
Unspecified vulnerability in Redhat Ansible Tower
A flaw was found in ansible-tower.
local
high complexity
redhat
6.7
6.7