CVE-2020-10685

5MEDIUM

Key Information:

Vendor: Red Hat
Status: Ansible
Vendor: CVE Published:; 11 May 2020

Summary

A flaw was found in Ansible Engine affecting Ansible Engine versions 2.7.x before 2.7.17 and 2.8.x before 2.8.11 and 2.9.x before 2.9.7 as well as Ansible Tower before and including versions 3.4.5 and 3.5.5 and 3.6.3 when using modules which decrypts vault files such as assemble, script, unarchive, win_copy, aws_s3 or copy modules. The temporary directory is created in /tmp leaves the s ts unencrypted. On Operating Systems which /tmp is not a tmpfs but part of the root partition, the directory is only cleared on boot and the decryp emains when the host is switched off. The system will be vulnerable when the system is not running. So decrypted data must be cleared as soon as possible and the data which normally is encrypted ble.

Affected Version(s)

Ansible ansible-engine versions 2.7.x before 2.7.17

Ansible ansible-engine 2.8.x before 2.8.11

Ansible ansible-engine 2.9.x before 2.9.7

References

https://security.gentoo.org/glsa/202006-11

vendor-advisory

https://www.debian.org/security/2021/dsa-4950

vendor-advisory

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10685

CVSS V3.1

Score:

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
May 11, 2020
Vulnerability Reserved
Mar 20, 2020

Collectors

NVD DatabaseMitre Database