pkg:Debian/ansible

78 total CVEsCRITICAL8HIGH24MEDIUM43LOW3

✅ Check your installed version

All known vulnerabilities

CRITICAL9.8CVE-2014-4678Ansible Code Injection Vulnerability
from 0, < 1.6.6+dfsg-1
CRITICAL9.8CVE-2014-4657Ansible Remote Code Execution
from 0, < 1.5.5+dfsg-1
CRITICAL9.8CVE-2014-4966Ansible Arbitrary Code Execution
from 0, < 1.6.8+dfsg-1
CRITICAL9.8CVE-2014-4967Ansible Arbitrary Code Execution
from 0, < 1.6.8+dfsg-1
CRITICAL9.8CVE-2017-7550Ansible Insertion of Sensitive Information into Log File vulnerability
from 0, < 2.4.2.0+dfsg-1
CRITICAL9.8CVE-2017-7481ansible - security update
from 0, < 2.3.1.0+dfsg-1
CRITICAL9.8CVE-2017-7481ansible - security update
from 0, < 2.2.1.0-2+deb9u2
CRITICAL9.1CVE-2016-8628Ansible fails to properly sanitize fact variables sent from the Ansible controller
from 0, < 2.2.0.0-1
HIGH8.8CVE-2014-3498Ansible Arbitrary Code Execution
from 0, < 1.7.0+dfsg-1
HIGH8.1CVE-2016-9587Ansible is vulnerable to an improper input validation in Ansible's handling of data sent from client systems
from 0, < 2.2.0.0-3
HIGH8.0CVE-2017-7466Ansible Arbitrary Code Execution
from 0, < 2.2.1.0-2
HIGH7.8CVE-2019-14846ansible - security update
from 0, < 1.7.2+dfsg-2+deb8u3
HIGH7.8CVE-2019-14846ansible - security update
from 0, < 2.8.6+dfsg-1
HIGH7.8CVE-2015-6240Ansible Sandbox Escape via Symlink Attack
from 0, < 1.9.2+dfsg-1
HIGH7.8CVE-2018-16837ansible - security update
from 0, < 2.7.1+dfsg-1
HIGH7.8CVE-2018-16837ansible - security update
from 0, < 1.7.2+dfsg-2+deb8u1
HIGH7.8CVE-2018-10875Ansible Arbitrary Code Execution
from 0, < 2.6.1+dfsg-1
HIGH7.8CVE-2018-10874Ansible Improper Input Validation vulnerability
from 0, < 2.6.1+dfsg-1
HIGH7.8CVE-2020-1737Path Traversal in Ansible
from 0, < 2.9.7+dfsg-1
HIGH7.8CVE-2016-3096Link Following in ansible
from 0, < 2.0.1.0-2
HIGH7.5CVE-2022-3697Ansible leaks password to logs
from 0, < 2.10.7+merged+base+2.10.17+dfsg-0+deb11u1
HIGH7.5CVE-2021-20228Ansible Exposes Sensitive Information
from 0, < 2.10.7+merged+base+2.10.8+dfsg-1
HIGH7.5CVE-2014-2686Ansible unsafe evaluation of some strings
from 0, < 1.5.4+dfsg-1
HIGH7.5CVE-2015-3908ansible - security update
from 0, < 1.9.2+dfsg-1
HIGH7.5CVE-2015-3908ansible - security update
from 0, < 1.7.2+dfsg-2+deb8u2
HIGH7.5CVE-2016-8614Ansible apt_key module does not properly verify key fingerprint
from 0, < 2.2.0.0-1
HIGH7.4CVE-2020-1734OS Command Injection in ansible
from 0
HIGH7.4CVE-2013-2233Ansible fails to cache SSH host keys
from 0, < 1.3.4+dfsg-1
HIGH7.3CVE-2019-14904OS Command Injection and Improper Input Validation in ansible
from 0, < 2.9.4+dfsg-1
HIGH7.1CVE-2021-3583Improper Input Validation and Command Injection in Ansible
from 0, < 2.10.7+merged+base+2.10.17+dfsg-0+deb11u1
HIGH7.1CVE-2020-14365Improper Verification of Cryptographic Signature in ansible
from 0, < 2.9.13+dfsg-1
HIGH7.1CVE-2020-10684Code Injection, Race Condition, and Execution with Unnecessary Privileges in Ansible
from 0, < 2.9.7+dfsg-1
MEDIUM6.6CVE-2023-5764Ansible template injection vulnerability
from 0, < 2.10.7+merged+base+2.10.17+dfsg-0+deb11u1
MEDIUM6.5CVE-2023-4237Ansible may expose private key
from 0, < 2.10.7+merged+base+2.10.17+dfsg-0+deb11u1
MEDIUM6.5CVE-2019-10206ansible - security update
from 0, < 2.8.6+dfsg-1
MEDIUM6.5CVE-2019-10206ansible - security update
from 0, < 2.7.7+dfsg-1+deb10u2
MEDIUM6.5CVE-2019-10217Exposure of Sensitive Information to an Unauthorized Actor in ansible
from 0, < 2.8.6+dfsg-1
MEDIUM6.5CVE-2019-14864Inclusion of Sensitive Information in Log Files and Improper Output Neutralization for Logs in Ansible
from 0, < 2.9.2+dfsg-1
MEDIUM6.3CVE-2024-9902ansible-core Incorrect Authorization vulnerability
from 0, < 2.10.7+merged+base+2.10.17+dfsg-0+deb11u2
MEDIUM6.3CVE-2023-5115Ansible symlink attack vulnerability
from 0, < 2.10.7+merged+base+2.10.17+dfsg-0+deb11u1
MEDIUM5.9CVE-2018-10855ansible - security update
from 0, < 2.2.1.0-2+deb9u1
MEDIUM5.9CVE-2018-10855ansible - security update
from 0, < 2.5.5+dfsg-1
MEDIUM5.6CVE-2019-14905Externally Controlled Reference to a Resource in Another Sphere, Improper Input Validation, and External Control of File Name or Path in Ansible
from 0, < 2.9.4+dfsg-1
MEDIUM5.5CVE-2025-14010Ansible Community General Collection is vulnerable to exposure of sensitive information
from 0, < 12.0.0+dfsg-0+deb13u1
MEDIUM5.5CVE-2024-11079ansible - security update
from 0, < 2.10.7+merged+base+2.10.17+dfsg-0+deb11u4
MEDIUM5.5CVE-2024-11079ansible - security update
from 0, < 2.10.7+merged+base+2.10.17+dfsg-0+deb11u4
MEDIUM5.5CVE-2024-8775ansible - security update
from 0, < 2.10.7+merged+base+2.10.17+dfsg-0+deb11u2
MEDIUM5.5CVE-2024-8775ansible - security update
from 0, < 2.10.7+merged+base+2.10.17+dfsg-0+deb11u2
MEDIUM5.5CVE-2019-14858Ansible leaks sensitive information to logs when told not to
from 0, < 2.8.6+dfsg-1
MEDIUM5.5CVE-2014-4660Ansible discloses credential information
from 0, < 1.5.5+dfsg-1
MEDIUM5.5CVE-2014-4658Ansible Sensitive Files Are Locally Readable
from 0, < 1.5.5+dfsg-1
MEDIUM5.5CVE-2014-4659Ansible sets unsafe permissions for sources.list
from 0, < 1.5.5+dfsg-1
MEDIUM5.5CVE-2021-20180Insertion of Sensitive Information into Log File in ansible
from 0, < 2.10.7-1
MEDIUM5.5CVE-2021-3620Ansible discloses sensitive information in traceback error message
from 0, < 2.10.7+merged+base+2.10.17+dfsg-0+deb11u1
MEDIUM5.5CVE-2020-14330Improper Output Neutralization and Improper Encoding or Escaping of Output for Logs in ansible
from 0, < 2.9.13+dfsg-1
MEDIUM5.5CVE-2020-14332Insertion of Sensitive Information into Log File and Improper Output Neutralization for Logs in ansible
from 0, < 2.9.13+dfsg-1
MEDIUM5.5CVE-2021-20178Insertion of Sensitive Information into Log File in ansible
from 0, < 2.10.7-1
MEDIUM5.5CVE-2021-20191Insertion of Sensitive Information into Log File in ansible
from 0, < 2.10.7-1
MEDIUM5.5CVE-2020-10685Exposure of Resource to Wrong Sphere and Insecure Temporary File in Ansible
from 0, < 2.9.7+dfsg-1
MEDIUM5.5CVE-2020-1753Insertion of Sensitive Information into Log File, Invocation of Process Using Visible Sensitive Information, and Exposure of Sensitive Information to an Unauthorized Actor in Ansible
from 0, < 2.9.16+dfsg-1
MEDIUM5.5CVE-2021-3447A flaw was found in several ansible modules, where parameters containing credentials, such as secrets, were being logged in plain-text on m…
from 0, < 2.10.7+merged+base+2.10.8+dfsg-1
MEDIUM5.4CVE-2019-10156ansible - security update
from 0, < 2.7.7+dfsg-1+deb10u1
MEDIUM5.4CVE-2019-10156ansible - security update
from 0, < 2.8.3+dfsg-1
MEDIUM5.3CVE-2018-16876Ansible sensitive information disclosure
from 0, < 2.7.6+dfsg-1
MEDIUM5.2CVE-2020-10691Path Traversal in Ansible
from 0, < 2.9.7+dfsg-1
MEDIUM5.0CVE-2024-0690Ansible-core information disclosure flaw
from 0, < 2.10.7+merged+base+2.10.17+dfsg-0+deb11u1
MEDIUM5.0CVE-2020-10744Exposure of Resource to Wrong Sphere and Insecure Temporary File in Ansible
from 0, < 2.9.13+dfsg-1
MEDIUM5.0CVE-2020-10729Insufficiently random values in Ansible
from 0, < 2.9.6+dfsg-1
MEDIUM5.0CVE-2020-1733Ansible vulnerable to Exposure of Resource to Wrong Sphere and Insecure Temporary File
from 0, < 2.9.7+dfsg-1
MEDIUM5.0CVE-2020-1746Exposure of Sensitive Information to an Unauthorized Actor in ansible
from 0, < 2.9.7+dfsg-1
MEDIUM4.9CVE-2016-8647Improper Input Validation in ansible
from 0, < 2.2.0.0-4
MEDIUM4.7CVE-2020-1740Exposure of Sensitive Information to an Unauthorized Actor and Insecure Temporary File in Ansible
from 0, < 2.9.7+dfsg-1
MEDIUM4.6CVE-2020-1735Path Traversal in Ansible
from 0, < 2.9.7+dfsg-1
MEDIUM4.2CVE-2019-3828Ansible Path Traversal vulnerability
from 0, < 2.7.7+dfsg-1
MEDIUM4.0CVE-2013-4259Ansible uses a socket with predictable filename in /tmp
from 0, < 1.3.4+dfsg-1
LOW3.9CVE-2020-1738Argument Injection in Ansible
from 0
LOW3.9CVE-2020-1739Exposure of Sensitive Information to an Unauthorized Actor in Ansible
from 0, < 2.9.7+dfsg-1
LOW3.3CVE-2020-1736Incorrect Permission Assignment for Critical Resource in Ansible
from 0