rpm package
suse/uyuni-proxy-systemd-services&distro=SUSE Manager Client Tools Beta for SLE Micro 5
pkg:rpm/suse/uyuni-proxy-systemd-services&distro=SUSE%20Manager%20Client%20Tools%20Beta%20for%20SLE%20Micro%205
Vulnerabilities (44)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-20178 | — | < 5.0.1-159000.3.9.1 | 5.0.1-159000.3.9.1 | May 26, 2021 | A flaw was found in ansible module where credentials are disclosed in the console log by default and not protected by the security feature when using the bitbucket_pipeline_variable module. This flaw allows an attacker to steal bitbucket_pipeline credentials. The highest threat f | ||
| CVE-2021-20228 | — | < 5.0.1-159000.3.9.1 | 5.0.1-159000.3.9.1 | Apr 29, 2021 | A flaw was found in the Ansible Engine 2.9.18, where sensitive info is not masked by default and is not protected by the no_log feature when using the sub-option feature of the basic.py module. This flaw allows an attacker to obtain sensitive information. The highest threat from | ||
| CVE-2021-3447 | — | < 5.0.1-159000.3.9.1 | 5.0.1-159000.3.9.1 | Apr 1, 2021 | A flaw was found in several ansible modules, where parameters containing credentials, such as secrets, were being logged in plain-text on managed nodes, as well as being made visible on the controller node when run in verbose mode. These parameters were not protected by the no_lo | ||
| CVE-2020-7753 | — | < 5.0.1-159000.3.9.1 | 5.0.1-159000.3.9.1 | Oct 27, 2020 | All versions of package trim are vulnerable to Regular Expression Denial of Service (ReDoS) via trim(). |
- CVE-2021-20178May 26, 2021affected < 5.0.1-159000.3.9.1fixed 5.0.1-159000.3.9.1
A flaw was found in ansible module where credentials are disclosed in the console log by default and not protected by the security feature when using the bitbucket_pipeline_variable module. This flaw allows an attacker to steal bitbucket_pipeline credentials. The highest threat f
- CVE-2021-20228Apr 29, 2021affected < 5.0.1-159000.3.9.1fixed 5.0.1-159000.3.9.1
A flaw was found in the Ansible Engine 2.9.18, where sensitive info is not masked by default and is not protected by the no_log feature when using the sub-option feature of the basic.py module. This flaw allows an attacker to obtain sensitive information. The highest threat from
- CVE-2021-3447Apr 1, 2021affected < 5.0.1-159000.3.9.1fixed 5.0.1-159000.3.9.1
A flaw was found in several ansible modules, where parameters containing credentials, such as secrets, were being logged in plain-text on managed nodes, as well as being made visible on the controller node when run in verbose mode. These parameters were not protected by the no_lo
- CVE-2020-7753Oct 27, 2020affected < 5.0.1-159000.3.9.1fixed 5.0.1-159000.3.9.1
All versions of package trim are vulnerable to Regular Expression Denial of Service (ReDoS) via trim().
Page 3 of 3