Vulnerabilities

CVE-2020-1735

by Fred · 16/03/2020

A flaw was found in the Ansible Engine when the fetch module is used. An attacker could intercept the module, inject a new path, and then choose a new destination path on the controller node. All versions in 2.7.x, 2.8.x and 2.9.x branches are believed to be vulnerable.

Date published : 2020-03-16

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1735

https://github.com/ansible/ansible/issues/67793

Similar

Tags: Cybersecurity Alert