A flaw was found in Ansible Base when using the aws_ssm connection plugin as there is no namespace separation for file transfers. Files are written directly to the root bucket, making possible to have collisions when running multiple ansible processes. This issue affects mainly the service availability.
References
Link | Resource |
---|---|
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-25636 | Issue Tracking Vendor Advisory |
https://github.com/ansible-collections/community.aws/issues/221 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2020-10-05T12:51:02
Updated: 2020-10-05T12:51:02
Reserved: 2020-09-16T00:00:00
Link: CVE-2020-25636
JSON object: View
NVD Information
Status : Modified
Published: 2020-10-05T13:15:13.490
Modified: 2023-11-07T03:20:17.893
Link: CVE-2020-25636
JSON object: View
Redhat Information
No data.