CVE-2021-3701

CWE-276 — Incorrect Default Permissions7 documents6 sources

Severity

6.6MEDIUM

EPSS

0.1%

top 67.14%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Redhat Ansible Runner

Timeline

PublishedAug 23

Latest updateAug 24

Description

A flaw was found in ansible-runner where the default temporary files configuration in ansible-2.0.0 are written to world R/W locations. This flaw allows an attacker to pre-create the directory, resulting in reading private information or forcing ansible-runner to write files as the legitimate user in a place they did not expect. The highest threat from this vulnerability is to confidentiality and integrity.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:NExploitability: 1.3 | Impact: 5.2

Affected Packages4 packages

▶PyPIansible-runner2.0.0 — 2.1.0

▶Debianansible-runner< 2.1.1-1+2

▶CVEListV5ansible-runnerAffects ansible-runner 2.0

▶NVDredhat/ansible_runner2.0.0

Patches

Patch: bugzilla.redhat.com ↗Patch: github.com ↗Patch: bugzilla.redhat.com ↗

🔴Vulnerability Details

GHSA

ansible-runner has default temporary files written to world R/W locations↗2022-08-24

▶

OSV

ansible-runner has default temporary files written to world R/W locations↗2022-08-24

▶

CVEList

CVE-2021-3701: A flaw was found in ansible-runner where the default temporary files configuration in ansible-2↗2022-08-23

▶

OSV

CVE-2021-3701: A flaw was found in ansible-runner where the default temporary files configuration in ansible-2↗2022-08-23

▶

📋Vendor Advisories

Red Hat

ansible-runner: Artifacts are written to world rw location by default↗2021-06-23

▶

Debian

CVE-2021-3701: ansible-runner - A flaw was found in ansible-runner where the default temporary files configurati...↗2021

▶