CVE-2025-14010 — Log File Information Exposure in Ansible Community General Collection

CWE-532 — Log File Information Exposure CWE-200 — Sensitive Information Exposure8 documents7 sources

Severity

5.5MEDIUMNVD

EPSS

0.0%

top 95.36%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Ansible-collections Ansible Community General Collection Redhat Ansible

Timeline

PublishedDec 4

Description

A flaw was found in ansible-collection-community-general. This vulnerability allows for information exposure (IE) of sensitive credentials, specifically plaintext passwords, via verbose output when running Ansible with debug modes. Attackers with access to logs could retrieve these secrets and potentially compromise Keycloak accounts or administrative access.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

▶CVEListV5ansible-collections/ansible_community_general_collection7.1.0 — 9.5.13+3

▶PyPIredhat/ansible< 12.2.0

▶Debianredhat/ansible< 12.0.0+dfsg-0+deb13u1+1

🔴Vulnerability Details

OSV

Ansible Community General Collection is vulnerable to exposure of sensitive information↗2025-12-04

▶

CVEList

Ansible-collection-community-general: ansible-collection-community-general: keycloak user module leaks credentials in verbose output↗2025-12-04

▶

GHSA

Ansible Community General Collection is vulnerable to exposure of sensitive information↗2025-12-04

▶

OSV

CVE-2025-14010: A flaw was found in ansible-collection-community-general↗2025-12-04

▶

📋Vendor Advisories

Red Hat

ansible-collection-community-general: ansible-collection-community-general: Keycloak user module leaks credentials in verbose output↗2025-12-04

▶

Debian

CVE-2025-14010: ansible - A flaw was found in ansible-collection-community-general. This vulnerability all...↗2025

▶