CVE-2018-10875Untrusted Search Path in Redhat Ansible

CWE-426Untrusted Search Path12 documents8 sources
Severity
7.8HIGHNVD
OSV9.8
EPSS
0.0%
top 86.89%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
10
Redhat AnsibleCanonical Ubuntu LinuxDebian Linux+7 more
Timeline
PublishedJul 13
Latest updateMay 13

Description

A flaw was found in ansible. ansible.cfg is read from the current working directory which can be altered to make it point to a plugin or a module path under the control of an attacker, thus allowing the attacker to execute arbitrary code.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages10 packages

PyPIredhat/ansible2.5.0a12.5.6+2
Debianredhat/ansible< 2.6.1+dfsg-1+3
Ubunturedhat/ansible< 2.0.0.2-2ubuntu1.3+1
NVDredhat/ansible_engine4 versions+3

Also affects: Debian Linux 8.0, 9.0, Ubuntu Linux 16.04, 18.04, 19.04

🔴Vulnerability Details

5
GHSA
Ansible Arbitrary Code Execution2022-05-13
OSV
Ansible Arbitrary Code Execution2022-05-13
OSV
ansible vulnerabilities2019-07-24
CVEList
CVE-2018-10875: A flaw was found in ansible2018-07-13
OSV
CVE-2018-10875: A flaw was found in ansible2018-07-13

📋Vendor Advisories

3
Ubuntu
Ansible vulnerabilities2019-07-24
Red Hat
ansible: ansible.cfg is being read from current working directory allowing possible code execution2018-06-29
Debian
CVE-2018-10875: ansible - A flaw was found in ansible. ansible.cfg is read from the current working direct...2018

💬Community

3
Bugzilla
CVE-2018-10875 ansible: ansible.cfg is being read from current working directory allowing possible code execution [fedora-all]2018-07-06
Bugzilla
CVE-2018-10875 ansible: ansible.cfg is being read from current working directory allowing possible code execution [epel-all]2018-07-06
Bugzilla
CVE-2018-10875 ansible: ansible.cfg is being read from current working directory allowing possible code execution2018-06-29