VYPR

PyPI package

ansible-vault

pkg:pypi/ansible-vault

Vulnerabilities (1)

  • CVE-2017-2809HigSep 14, 2017
    affected < 1.0.5fixed 1.0.5

    An exploitable vulnerability exists in the yaml loading functionality of ansible-vault before 1.0.5. A specially crafted vault can execute arbitrary python commands resulting in command execution. An attacker can insert python into the vault to trigger this vulnerability.