CVE-2020-25636

A flaw was found in Ansible Base when using the aws_ssm connection plugin as there is no namespace separation for file transfers. Files are written directly to the root bucket, making possible to have collisions when running multiple ansible processes. This issue affects mainly the service availability.
Configurations

Configuration 1 (hide)

cpe:2.3:a:redhat:ansible:2.10.1:rc2:*:*:*:*:*:*

History

No history.

Information

Published : 2020-10-05 13:15

Updated : 2024-02-04 21:23


NVD link : CVE-2020-25636

Mitre link : CVE-2020-25636

CVE.ORG link : CVE-2020-25636


JSON object : View

Products Affected

redhat

  • ansible
CWE
CWE-552

Files or Directories Accessible to External Parties

CWE-377

Insecure Temporary File