VYPR
Critical severity9.8NVD Advisory· Published Nov 21, 2017· Updated Jun 17, 2026

CVE-2017-7550

CVE-2017-7550

Description

A flaw was found in the way Ansible (2.3.x before 2.3.3, and 2.4.x before 2.4.1) passed certain parameters to the jenkins_plugin module. Remote attackers could use this flaw to expose sensitive information from a remote host's logs. This flaw was fixed by not allowing passwords to be specified in the "params" argument, and noting this in the module documentation.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
ansiblePyPI
>= 2.4.0.0, < 2.4.1.02.4.1.0
ansiblePyPI
>= 2.3.0.0, < 2.3.3.02.3.3.0

Affected products

182

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.