Privilege Escalation in Ansible Tower by Red Hat
CVE-2015-1481

Currently unrated

Key Information:

Vendor

Ansible

Status
Tower
Vendor
CVE Published:
4 February 2015

What is CVE-2015-1481?

Ansible Tower prior to version 2.0.5 is vulnerable to a privilege escalation issue that allows remote organization administrators to create superuser accounts, potentially compromising the security of the system. This vulnerability can be exploited by an authenticated user who may gain higher access than intended, leading to serious security risks and unauthorized actions within the application.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://packetstormsecurity.com/files/129944/Ansible-Tower...
x_refsource_MISC
http://www.securityfocus.com/archive/1/534464/100/0/threaded
mailing-listx_refsource_BUGTRAQ
http://seclists.org/fulldisclosure/2015/Jan/52
mailing-listx_refsource_FULLDISC

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.