CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Ansible-Vault Project: >> Ansible-Vault >> 1.0.1 Security Vulnerabilities

CVE-2017-2809

An exploitable vulnerability exists in the yaml loading functionality of ansible-vault before 1.0.5. A specially crafted vault can execute arbitrary python commands resulting in command execution. An attacker can insert python into the vault to trigger this vulnerability.

CVSS Score

7.5

EPSS Score

0.007

Published

2017-09-14

Page 1

Vulnerabilities

Vulnerable Software

Ansible-Vault Project: >> Ansible-Vault >> 1.0.1 Security Vulnerabilities

Products

Pricing

Contact Us