Vulnerability Details : CVE-2021-3701
A flaw was found in ansible-runner where the default temporary files configuration in ansible-2.0.0 are written to world R/W locations. This flaw allows an attacker to pre-create the directory, resulting in reading private information or forcing ansible-runner to write files as the legitimate user in a place they did not expect. The highest threat from this vulnerability is to confidentiality and integrity.
Products affected by CVE-2021-3701
- cpe:2.3:a:redhat:ansible_runner:2.0.0:-:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2021-3701
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 7 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2021-3701
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
6.6
|
MEDIUM | CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N |
1.3
|
5.2
|
NIST |
CWE ids for CVE-2021-3701
-
During installation, installed file permissions are set to allow anyone to modify those files.Assigned by:
- nvd@nist.gov (Primary)
- secalert@redhat.com (Secondary)
References for CVE-2021-3701
-
https://github.com/ansible/ansible-runner/pull/742/commits
Secure tempfiles by abadger · Pull Request #742 · ansible/ansible-runner · GitHubPatch;Third Party Advisory
-
https://bugzilla.redhat.com/show_bug.cgi?id=1977959
1977959 – (CVE-2021-3701) CVE-2021-3701 ansible-runner: Artifacts are written to world rw location by defaultIssue Tracking;Patch;Vendor Advisory
-
https://github.com/ansible/ansible-runner/issues/738
ansible-runner writes artifacts to world rw location by default · Issue #738 · ansible/ansible-runner · GitHubIssue Tracking;Third Party Advisory
-
https://access.redhat.com/security/cve/CVE-2021-3701
CVE-2021-3701- Red Hat Customer PortalVendor Advisory
Jump to