CVE-2020-10744 : An incomplete fix was found for the fix of the flaw CVE-2020-1733 ansible: insec

An incomplete fix was found for the fix of the flaw CVE-2020-1733 ansible: insecure temporary directory when running become_user from become directive. The provided fix is insufficient to prevent the race condition on systems using ACLs and FUSE filesystems. Ansible Engine 2.7.18, 2.8.12, and 2.9.9 as well as previous versions are affected and Ansible Tower 3.4.5, 3.5.6 and 3.6.4 as well as previous versions are affected.

Published 2020-05-15 14:15:12

Updated 2022-10-21 17:59:58

Source Red Hat, Inc.

View at NVD, CVE.org

Products affected by CVE-2020-10744

Redhat » Ansible Tower
Versions from including (>=) 3.5.0 and up to, including, (<=) 3.5.6
cpe:2.3:a:redhat:ansible_tower:*:*:*:*:*:*:*:*
Matching versions
Redhat » Ansible Tower
Versions from including (>=) 3.6.0 and up to, including, (<=) 3.6.4
cpe:2.3:a:redhat:ansible_tower:*:*:*:*:*:*:*:*
Matching versions
Redhat » Ansible Tower
Versions from including (>=) 3.4.0 and up to, including, (<=) 3.4.5
cpe:2.3:a:redhat:ansible_tower:*:*:*:*:*:*:*:*
Matching versions
Redhat » Ansible
Versions from including (>=) 2.7.0 and up to, including, (<=) 2.7.18
cpe:2.3:a:redhat:ansible:*:*:*:*:*:*:*:*
Matching versions
Redhat » Ansible
Versions from including (>=) 2.9.0 and up to, including, (<=) 2.9.9
cpe:2.3:a:redhat:ansible:*:*:*:*:*:*:*:*
Matching versions
Redhat » Ansible
Versions from including (>=) 2.8.0 and up to, including, (<=) 2.8.12
cpe:2.3:a:redhat:ansible:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2020-10744

EPSS FAQ

0.04%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 10 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2020-10744

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
3.7	LOW	AV:L/AC:H/Au:N/C:P/I:P/A:P	1.9	6.4	NIST
Access Vector: Local Access Complexity: High Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
5.0	MEDIUM	CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L	0.8	3.7	Red Hat, Inc.
Attack Vector: Local Attack Complexity: High Privileges Required: Low User Interaction: Required Scope: Changed Confidentiality: Low Integrity: Low Availability: Low
5.0	MEDIUM	CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L	0.8	3.7	NIST
Attack Vector: Local Attack Complexity: High Privileges Required: Low User Interaction: Required Scope: Changed Confidentiality: Low Integrity: Low Availability: Low

CWE ids for CVE-2020-10744

CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

Assigned by: nvd@nist.gov (Primary)
CWE-377 Insecure Temporary File

Creating and using insecure temporary files can leave application and system data vulnerable to attack.

Assigned by: secalert@redhat.com (Secondary)

References for CVE-2020-10744

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10744

1835566 – (CVE-2020-10744) CVE-2020-10744 ansible: incomplete fix for CVE-2020-1733
Issue Tracking;Vendor Advisory

Jump to

Vulnerability Details : CVE-2020-10744

Products affected by CVE-2020-10744

Exploit prediction scoring system (EPSS) score for CVE-2020-10744

CVSS scores for CVE-2020-10744

CWE ids for CVE-2020-10744

References for CVE-2020-10744