CVE-2020-25636 — Insecure Temporary File in Redhat Ansible

CWE-377 — Insecure Temporary File CWE-552 — Files or Directories Accessible to External Parties CWE-820 — Missing Synchronization6 documents6 sources

Severity

7.1HIGHNVD

CNA6.6

EPSS

0.1%

top 69.06%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

AWS Community Community Collections Redhat Ansible

Timeline

PublishedOct 5

Description

A flaw was found in Ansible Base when using the aws_ssm connection plugin as there is no namespace separation for file transfers. Files are written directly to the root bucket, making possible to have collisions when running multiple ansible processes. This issue affects mainly the service availability.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:HExploitability: 1.8 | Impact: 5.2

Affected Packages2 packages

▶NVDredhat/ansible2.10.1

▶CVEListV5aws_community/community_collectionsfrom 1.0.0 to 1.2.0

🔴Vulnerability Details

OSV

CVE-2020-25636: A flaw was found in Ansible Base when using the aws_ssm connection plugin as there is no namespace separation for file transfers↗2020-10-05

▶

CVEList

CVE-2020-25636: A flaw was found in Ansible Base when using the aws_ssm connection plugin as there is no namespace separation for file transfers↗2020-10-05

▶

📋Vendor Advisories

Red Hat

Collections: aws_ssm connection plugin should namespace its file transfers↗2020-09-04

▶

Debian

CVE-2020-25636: ansible - A flaw was found in Ansible Base when using the aws_ssm connection plugin as the...↗2020

▶

💬Community

Bugzilla

CVE-2020-25636 Collections: aws_ssm connection plugin should namespace its file transfers↗2020-09-18

▶