CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-4259

runner/connection_plugins/ssh.py in Ansible before 1.2.3, when using ControlPersist, allows local users to redirect a ssh session via a symlink attack on a socket file with a predictable name in /tmp/.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 15.8%

CVSS Severity

CVSS v2 Score 1.9

References

Products affected by CVE-2013-4259

Redhat » Ansible » Version: 0.0.1

cpe:2.3:a:redhat:ansible:0.0.1
Redhat » Ansible » Version: 0.0.2

cpe:2.3:a:redhat:ansible:0.0.2
Redhat » Ansible » Version: 0.01

cpe:2.3:a:redhat:ansible:0.01
Redhat » Ansible » Version: 0.3

cpe:2.3:a:redhat:ansible:0.3
Redhat » Ansible » Version: 0.3.1

cpe:2.3:a:redhat:ansible:0.3.1
Redhat » Ansible » Version: 0.4

cpe:2.3:a:redhat:ansible:0.4
Redhat » Ansible » Version: 0.4.1

cpe:2.3:a:redhat:ansible:0.4.1
Redhat » Ansible » Version: 0.5

cpe:2.3:a:redhat:ansible:0.5
Redhat » Ansible » Version: 0.6

cpe:2.3:a:redhat:ansible:0.6
Redhat » Ansible » Version: 0.7

cpe:2.3:a:redhat:ansible:0.7
Redhat » Ansible » Version: 0.7.1

cpe:2.3:a:redhat:ansible:0.7.1
Redhat » Ansible » Version: 0.7.2

cpe:2.3:a:redhat:ansible:0.7.2
Redhat » Ansible » Version: 0.8

cpe:2.3:a:redhat:ansible:0.8
Redhat » Ansible » Version: 0.9

cpe:2.3:a:redhat:ansible:0.9
Redhat » Ansible » Version: 1.0

cpe:2.3:a:redhat:ansible:1.0
Redhat » Ansible » Version: 1.1

cpe:2.3:a:redhat:ansible:1.1
Redhat » Ansible » Version: 1.2

cpe:2.3:a:redhat:ansible:1.2
Redhat » Ansible » Version: 1.2.1

cpe:2.3:a:redhat:ansible:1.2.1
Redhat » Ansible » Version: 1.2.2

cpe:2.3:a:redhat:ansible:1.2.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-4259

Products

Pricing

Contact Us