3.7.1

DATE	CVE	VULNERABILITY TITLE	RISK
2021-05-27	CVE-2020-14327	Unspecified vulnerability in Redhat Ansible Tower A Server-side request forgery (SSRF) flaw was found in Ansible Tower in versions before 3.6.5 and before 3.7.2. local low complexity redhat	5.5
2021-05-27	CVE-2020-14328	Unspecified vulnerability in Redhat Ansible Tower A flaw was found in Ansible Tower in versions before 3.7.2. local low complexity redhat	3.3
2021-05-27	CVE-2020-14329	Unspecified vulnerability in Redhat Ansible Tower A data exposure flaw was found in Ansible Tower in versions before 3.7.2, where sensitive data can be exposed from the /api/v2/labels/ endpoint. local low complexity redhat	3.3
2021-04-01	CVE-2021-3447	A flaw was found in several ansible modules, where parameters containing credentials, such as secrets, were being logged in plain-text on managed nodes, as well as being made visible on the controller node when run in verbose mode. local low complexity redhat fedoraproject	5.5
2021-03-09	CVE-2021-20253	Unspecified vulnerability in Redhat Ansible Tower A flaw was found in ansible-tower. local high complexity redhat	6.7
2020-09-23	CVE-2020-14365	A flaw was found in the Ansible Engine, in ansible-engine 2.8.x before 2.8.15 and ansible-engine 2.9.x before 2.9.13, when installing packages using the dnf module. local low complexity redhat debian	7.1
2020-03-16	CVE-2020-1736	Incorrect Permission Assignment for Critical Resource vulnerability in multiple products A flaw was found in Ansible Engine when a file is moved using atomic_move primitive as the file mode cannot be specified. local low complexity redhat fedoraproject CWE-732	3.3