Redhat » Ansible Tower : Security Vulnerabilities, CVEs, (Directory traversal)
An archive traversal flaw was found in all ansible-engine versions 2.9.x prior to 2.9.7, when running ansible-galaxy collection install. When extracting a collection .tar.gz file, the directory is created without sanitizing the filename. An attacker could take advantage to overwrite any file within the system.
Max CVSS
5.2
EPSS Score
0.04%
Published
2020-04-30
Updated
2020-05-21
A flaw was found in Ansible 2.7.17 and prior, 2.8.9 and prior, and 2.9.6 and prior when using the Extract-Zip function from the win_unzip module as the extracted file(s) are not checked if they belong to the destination folder. An attacker could take advantage of this flaw by crafting an archive anywhere in the file system, using a path traversal. This issue is fixed in 2.10.
Max CVSS
7.8
EPSS Score
0.05%
Published
2020-03-09
Updated
2020-06-13
A flaw was found in the Ansible Engine when the fetch module is used. An attacker could intercept the module, inject a new path, and then choose a new destination path on the controller node. All versions in 2.7.x, 2.8.x and 2.9.x branches are believed to be vulnerable.
Max CVSS
4.6
EPSS Score
0.07%
Published
2020-03-16
Updated
2022-04-05
3 vulnerabilities found