CVE-2020-1738

Published Mar 16, 2020

Last updated a year ago

Overview

Description: A flaw was found in Ansible Engine when the module package or service is used and the parameter 'use' is not specified. If a previous task is executed with a malicious user, the module sent can be selected by the attacker using the ansible facts file. All versions in 2.7.x, 2.8.x and 2.9.x branches are believed to be vulnerable.
Source: secalert@redhat.com
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 3.1

Type: Primary
Base score: 3.9
Impact score: 2.7
Exploitability score: 0.8
Vector string: CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L
Severity: LOW

CVSS 2.0

Type: Primary
Base score: 2.6
Impact score: 4.9
Exploitability score: 1.9
Vector string: AV:L/AC:H/Au:N/C:N/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-88
secalert@redhat.com: CWE-88

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:redhat:ansible:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "89338CDC-A956-4F24-A2A2-EA5CFD78F235",
            "versionEndIncluding": "2.7.16"
          },
          {
            "criteria": "cpe:2.3:a:redhat:ansible:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D144C559-37B8-4DED-9D8B-61CE1134B3A5",
            "versionEndIncluding": "2.8.8",
            "versionStartIncluding": "2.8.0"
          },
          {
            "criteria": "cpe:2.3:a:redhat:ansible:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FA56E1B5-A742-4D2E-BF0B-C806689A3E05",
            "versionEndIncluding": "2.9.5",
            "versionStartIncluding": "2.9.0"
          },
          {
            "criteria": "cpe:2.3:a:redhat:ansible_tower:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C3C5721F-050A-42A3-A71D-6C6BA23D58FE",
            "versionEndIncluding": "3.3.4"
          },
          {
            "criteria": "cpe:2.3:a:redhat:ansible_tower:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "64DD1400-5512-493E-85DB-B3C18FBB2DBB",
            "versionEndIncluding": "3.4.5",
            "versionStartIncluding": "3.3.5"
          },
          {
            "criteria": "cpe:2.3:a:redhat:ansible_tower:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F2062F74-68D8-4E75-BC69-6038B519F823",
            "versionEndIncluding": "3.5.5",
            "versionStartIncluding": "3.5.0"
          },
          {
            "criteria": "cpe:2.3:a:redhat:ansible_tower:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "342D4A63-0972-413B-BD65-0495DBF1CDFB",
            "versionEndIncluding": "3.6.3",
            "versionStartIncluding": "3.6.0"
          },
          {
            "criteria": "cpe:2.3:a:redhat:cloudforms_management_engine:5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7098B44F-56BF-42E3-8831-48D0A8E99EE2"
          },
          {
            "criteria": "cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "704CFA1A-953E-4105-BFBE-406034B83DED"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Configurations

References