Ansible Engine/Ansible Tower Decryption /tmp temp file

entryeditHistoryDiffjsonxmlCTI

A vulnerability was found in Ansible Engine and Ansible Tower. It has been declared as problematic. Affected by this vulnerability is an unknown function of the file /tmp of the component Decryption Handler. Upgrading eliminates this vulnerability.

Field	05/12/2020 07:48 AM	10/16/2020 02:05 PM	10/16/2020 02:07 PM
cvss2_vuldb_rc	ND	ND	ND
cvss3_vuldb_e	X	X	X
cvss3_vuldb_rl	O	O	O
cvss3_vuldb_rc	X	X	X
cvss3_nvd_basescore	5.0	5.0	5.0
name	Ansible Engine/Ansible Tower	Ansible Engine/Ansible Tower	Ansible Engine/Ansible Tower
component	Decryption Handler	Decryption Handler	Decryption Handler
file	/tmp	/tmp	/tmp
affectedlist	Ansible Engine bis 2.7.16/2.8.10/2.9.6 Ansible Tower bis 3.4.5/3.5.5/3.6.3	Ansible Engine bis 2.7.16/2.8.10/2.9.6 Ansible Tower bis 3.4.5/3.5.5/3.6.3	Ansible Engine bis 2.7.16/2.8.10/2.9.6 Ansible Tower bis 3.4.5/3.5.5/3.6.3
risk	1	1	1
cvss2_vuldb_basescore	1.5	1.5	1.5
cvss2_vuldb_tempscore	1.3	1.3	1.3
cvss2_vuldb_av	L	L	L
cvss2_vuldb_ac	M	M	M
cvss2_vuldb_au	S	S	S
cvss2_vuldb_ci	P	P	P
cvss2_vuldb_ii	N	N	N
cvss2_vuldb_ai	N	N	N
cvss3_meta_basescore	3.9	3.9	3.9
cvss3_meta_tempscore	3.7	3.7	3.7
cvss3_vuldb_basescore	2.8	2.8	2.8
cvss3_vuldb_tempscore	2.7	2.7	2.7
cvss3_vuldb_av	L	L	L
cvss3_vuldb_ac	L	L	L
cvss3_vuldb_pr	L	L	L
cvss3_vuldb_ui	R	R	R
cvss3_vuldb_s	U	U	U
cvss3_vuldb_c	L	L	L
cvss3_vuldb_i	N	N	N
cvss3_vuldb_a	N	N	N
date	1589155200 (05/11/2020)	1589155200 (05/11/2020)	1589155200 (05/11/2020)
location	Bugzilla	Bugzilla	Bugzilla
type	Bug Report	Bug Report	Bug Report
url	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10685	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10685	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10685
price_0day	$0-$5k	$0-$5k	$0-$5k
name	Upgrade	Upgrade	Upgrade
cve	CVE-2020-10685	CVE-2020-10685	CVE-2020-10685
cvss2_vuldb_e	ND	ND	ND
cvss2_vuldb_rl	OF	OF	OF
cwe	377 (privilege escalation)	377 (privilege escalation)	377 (privilege escalation)
cvss3_nvd_av	L	L	L
cvss3_nvd_ac	L	L	L
cvss3_nvd_pr	L	L	L
cvss3_nvd_ui	R	R	R
cvss3_nvd_s	U	U	U
cvss3_nvd_c	H	H	H
cvss3_nvd_i	N	N	N
cvss3_nvd_a	N	N	N
cve_assigned	1584662400	1584662400	1584662400
cve_nvd_summary	A flaw was found in Ansible Engine affecting Ansible Engine versions 2.7.x before 2.7.17 and 2.8.x before 2.8.11 and 2.9.x before 2.9.7 as well as Ansible Tower before and including versions 3.4.5 and 3.5.5 and 3.6.3 when using modules which decrypts vault files such as assemble, script, unarchive, win_copy, aws_s3 or copy modules. The temporary directory is created in /tmp leaves the s ts unencrypted. On Operating Systems which /tmp is not a tmpfs but part of the root partition, the directory is only cleared on boot and the decryp emains when the host is switched off. The system will be vulnerable when the system is not running. So decrypted data must be cleared as soon as possible and the data which normally is encrypted ble.	A flaw was found in Ansible Engine affecting Ansible Engine versions 2.7.x before 2.7.17 and 2.8.x before 2.8.11 and 2.9.x before 2.9.7 as well as Ansible Tower before and including versions 3.4.5 and 3.5.5 and 3.6.3 when using modules which decrypts vault files such as assemble, script, unarchive, win_copy, aws_s3 or copy modules. The temporary directory is created in /tmp leaves the s ts unencrypted. On Operating Systems which /tmp is not a tmpfs but part of the root partition, the directory is only cleared on boot and the decryp emains when the host is switched off. The system will be vulnerable when the system is not running. So decrypted data must be cleared as soon as possible and the data which normally is encrypted ble.	A flaw was found in Ansible Engine affecting Ansible Engine versions 2.7.x before 2.7.17 and 2.8.x before 2.8.11 and 2.9.x before 2.9.7 as well as Ansible Tower before and including versions 3.4.5 and 3.5.5 and 3.6.3 when using modules which decrypts vault files such as assemble, script, unarchive, win_copy, aws_s3 or copy modules. The temporary directory is created in /tmp leaves the s ts unencrypted. On Operating Systems which /tmp is not a tmpfs but part of the root partition, the directory is only cleared on boot and the decryp emains when the host is switched off. The system will be vulnerable when the system is not running. So decrypted data must be cleared as soon as possible and the data which normally is encrypted ble.
confirm_url		https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10685	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10685
cve_cna			Red Hat, Inc.

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!