The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Ansible Tower

Ansible Tower: information disclosure via World Readable Configuration Files
An attacker can bypass access restrictions to data via World Readable Configuration Files of Ansible Tower, in order to obtain sensitive information...
CVE-2020-10782, VIGILANCE-VUL-32585
Ansible Tower: three vulnerabilities
An attacker can use several vulnerabilities of Ansible Tower...
CVE-2020-10697, CVE-2020-10698, CVE-2020-10709, VIGILANCE-VUL-32093
Python Twisted: information disclosure via HTTP Request Splitting
An attacker can bypass access restrictions to data via HTTP Request Splitting of Python Twisted, in order to obtain sensitive information...
CVE-2020-10108, CVE-2020-10109, DLA-2145-1, DLA-2145-2, RHSA-2020:1561-01, RHSA-2020:1962-01, USN-4308-1, USN-4308-2, VIGILANCE-VUL-31817
Django: SQL injection via Tolerance Parameter
An attacker can use a SQL injection via Tolerance Parameter of Django, in order to read or alter data...
CVE-2020-9402, DSA-4705-1, USN-4296-1, VIGILANCE-VUL-31723
AngularJS: privilege escalation via Object.prototype merge
An attacker can bypass restrictions via Object.prototype merge() of AngularJS, in order to escalate his privileges...
CVE-2019-10768, VIGILANCE-VUL-31166
Ansible Tower: information disclosure via /api/v2/config
An attacker can bypass access restrictions to data via /api/v2/config of Ansible Tower, in order to obtain sensitive information...
CVE-2019-14890, VIGILANCE-VUL-30961
Ansible Tower: Cross Site Scripting via Project Update Canceling
An attacker can trigger a Cross Site Scripting via Project Update Canceling of Ansible Tower, in order to run JavaScript code in the context of the web site...
VIGILANCE-VUL-30376
Django: four vulnerabilities
An attacker can use several vulnerabilities of Django...
bulletinoct2019, CVE-2019-14232, CVE-2019-14233, CVE-2019-14234, CVE-2019-14235, DLA-1872-1, DSA-4498-1, FEDORA-2019-647f74ce51, openSUSE-SU-2019:1839-1, openSUSE-SU-2019:1872-1, USN-4084-1, VIGILANCE-VUL-29930
Ansible Core: information disclosure via Templating
An attacker can bypass access restrictions to data via Templating of Ansible Core, in order to obtain sensitive information...
CVE-2019-10156, DLA-1923-1, FEDORA-2019-37171bc5f9, FEDORA-2019-d438eff890, RHBUG-1717311, USN-4072-1, VIGILANCE-VUL-29550
Ansible Tower: information disclosure via Credentials In Environment Variables
An attacker can bypass access restrictions to data via Credentials In Environment Variables of Ansible Tower, in order to obtain sensitive information...
CVE-2019-3869, VIGILANCE-VUL-28865
Our database contains other pages. You can request a free trial to read them.

Display information about Ansible Tower: