Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

pypi ansible Security Advisories

High

GSA_kwCzR0hTQS1jcHgzLTkzdzctNDU3eM4AAvlf

Ansible leaks password to logs
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: about 1 year ago

High

GSA_kwCzR0hTQS01cnJnLXJyODkteDltds4AArM7

Ansible Exposes Sensitive Information
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 1 year ago

Critical

GSA_kwCzR0hTQS02NmM3LTVwd3YtbW0zas4AArAK

Ansible Code Injection Vulnerability
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 1 year ago

Moderate

GSA_kwCzR0hTQS02ZnEyLXg2NXYtdjloN84AAiyz

Ansible password prompts could expose passwords
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 1 year ago

Moderate

GSA_kwCzR0hTQS1jcW1yLXJjcHItY3hoM84AAiwJ

Ansible password prompts could expose passwords
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 1 year ago

Moderate

GSA_kwCzR0hTQS01eG00LWptcHctcDZqM84AAgXF

Ansible discloses credential information
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 1 year ago

Moderate

GSA_kwCzR0hTQS01ZzR2LTJwYzYtNGhoNM4AAgXD

Ansible Sensitive Files Are Locally Readable
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 1 year ago

Critical

GSA_kwCzR0hTQS1xZzQ3LTVweDktMzJnN84AAgXC

Ansible Remote Code Execution
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 1 year ago

High

GSA_kwCzR0hTQS00OW01LTI4MzgtcTJyds4AAgUo

Ansible unsafe evaluation of some strings
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 1 year ago

High

GSA_kwCzR0hTQS00Y3ZtLTU3NzYtang5Zs4AAU8V

Ansible Arbitrary Code Execution
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 1 year ago

Low

GSA_kwCzR0hTQS1wY3F2LWM0NnYtMnA0ds4AAU8C

Ansible Arbitrary File Overwrite Vulnerability
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 1 year ago

High

GSA_kwCzR0hTQS13d3doLTQ3d3AtbTUyMs4AATHG

Ansible Sandbox Escape via Symlink Attack
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 1 year ago

High

GSA_kwCzR0hTQS0zeHZnLXg0N2oteDc1d83uSg

Ansible Improper Input Validation vulnerability
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 1 year ago

Critical

GSA_kwCzR0hTQS01ODh3LXc2bXYtM2N3Nc3sUg

Ansible Insertion of Sensitive Information into Log File vulnerability
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 1 year ago

Moderate

GSA_kwCzR0hTQS1maDV2LTVmMzUtMnJ2Ms0zsQ

Insertion of Sensitive Information into Log File in ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 1 year ago

Moderate

GSA_kwCzR0hTQS00cjY1LTM1cXEtY2g4as0wGw

Ansible discloses sensitive information in traceback error message
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: almost 2 years ago

Moderate

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc4NXgtcXc0di02ODcy

Improper Output Neutralization and Improper Encoding or Escaping of Output for Logs in ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: almost 2 years ago

Moderate

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY4NWgtMjNtZi0yZndo

Argument Injection in Ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: almost 2 years ago

Low

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXg3amgtNTk1cS13cTgy

Incorrect Permission Assignment for Critical Resource in Ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: almost 2 years ago

Moderate

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZwOWotcmdocS04amho

Exposure of Resource to Wrong Sphere and Insecure Temporary File in Ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: almost 2 years ago

Moderate

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo2NjctYzJobS1mMndw

Insertion of Sensitive Information into Log File and Improper Output Neutralization for Logs in ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: almost 2 years ago

High

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWgzOXEtOTVxNS05amZw

OS Command Injection in ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: almost 2 years ago

Moderate

GSA_kwCzR0hTQS1wNzVqLXdjMzQtNTI3Y80Wdg

Exposure of Sensitive Information to an Unauthorized Actor in ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: about 2 years ago

High

GSA_kwCzR0hTQS0ycGZoLXE3NngtZ3d2bc0V9w

Improper Input Validation and Command Injection in Ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: about 2 years ago

Moderate

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXI2aDctNXBxMi1qNzdo

Insufficiently random values in Ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 2 years ago

Moderate

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXd2NXAtZ21tdi13aDl2

Insertion of Sensitive Information into Log File in ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 2 years ago

Moderate

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThmNG0taGNjYy04cXBo

Insertion of Sensitive Information into Log File in ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 2 years ago

Moderate

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc0bXEtNmZwNS1xd2Nm

Exposure of Resource to Wrong Sphere and Insecure Temporary File in Ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 2 years ago

Moderate

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZyeGotNWoyNy1mOHJm

Externally Controlled Reference to a Resource in Another Sphere, Improper Input Validation, and External Control of File Name or Path in Ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 2 years ago

Moderate

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNjNjctZ2M0OC05ODN3

Path Traversal in Ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 2 years ago

High

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWd3cjgtNWo4My00ODNj

OS Command Injection and Improper Input Validation in ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 2 years ago

High

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW00MjktZmhtdi1jNnEy

Improper Verification of Cryptographic Signature in ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 2 years ago

Moderate

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWoyaDYtNzN4OC0yMmM0

Exposure of Sensitive Information to an Unauthorized Actor in ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 2 years ago

High

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg5M2gtMzV2NC1teHF4

Path Traversal in Ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 2 years ago

Low

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZjZzgtOThxOC1nN21q

Exposure of Sensitive Information to an Unauthorized Actor and Insecure Temporary File in Ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 2 years ago

High

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA2MmctamhnNi12M3Jx

Code Injection, Race Condition, and Execution with Unnecessary Privileges in Ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 2 years ago

Low

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc3ZzMtM2o1dy02NHc0

Exposure of Resource to Wrong Sphere and Insecure Temporary File in Ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 2 years ago

Moderate

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdmcjItcXB4aC1xajlt

Path Traversal in Ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 2 years ago

Moderate

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg2aHAtY2o5ai0zM3Z2

Insertion of Sensitive Information into Log File, Invocation of Process Using Visible Sensitive Information, and Exposure of Sensitive Information to an Unauthorized Actor in Ansible
Ecosystems: pypi
Packages: ansible
Source: GitHub Advisory Database
Published: over 2 years ago

Low

Moderate 6,471 High 5,598 Critical 2,473 Low 816

Filter by Ecosystem

maven 4,754 npm 3,389 pypi 3,117 packagist 2,566 go 1,534 nuget 1,317 rubygems 802 cargo 704 swift 32 hex 25 actions 12 pub 8

Filter by Package