VYPR
Medium severity4.2NVD Advisory· Published Mar 27, 2019· Updated Jun 17, 2026

CVE-2019-3828

CVE-2019-3828

Description

Ansible fetch module before versions 2.5.15, 2.6.14, 2.7.8 has a path traversal vulnerability which allows copying and overwriting files outside of the specified destination in the local ansible controller host, by not restricting an absolute path.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
ansiblePyPI
< 2.5.152.5.15
ansiblePyPI
>= 2.6.0a1, < 2.6.142.6.14
ansiblePyPI
>= 2.7.0a1, < 2.7.82.7.8

Affected products

350

Patches

Vulnerability mechanics

References

16

News mentions

0

No linked articles in our index yet.