CVE-2018-10884 — Cross-Site Request Forgery in Redhat Ansible Tower

CWE-352 — Cross-Site Request Forgery5 documents5 sources

Severity

8.8HIGHNVD

EPSS

0.2%

top 62.32%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Redhat Ansible Tower RED HAT Ansible-tower

Timeline

PublishedAug 22

Latest updateMay 13

Description

Ansible Tower before versions 3.1.8 and 3.2.6 is vulnerable to cross-site request forgery (CSRF) in awx/api/authentication.py. An attacker could exploit this by tricking already authenticated users into visiting a malicious site and hijacking the authtoken cookie.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages2 packages

▶NVDredhat/ansible_tower3.1.0 — 3.1.8+1

▶CVEListV5red_hat/ansible-tower3.1.8, 3.2.6+1

🔴Vulnerability Details

GHSA

GHSA-c66f-2xvm-8x2x: Ansible Tower before versions 3↗2022-05-13

▶

CVEList

CVE-2018-10884: Ansible Tower before versions 3↗2018-08-22

▶

📋Vendor Advisories

Red Hat

ansible-tower: CSRF in awx/api/authentication.py allows for hijacking of the authtoken cookie↗2018-08-13

▶

💬Community

Bugzilla

CVE-2018-10884 ansible-tower: CSRF in awx/api/authentication.py allows for hijacking of the authtoken cookie↗2018-07-02

▶