Ansible-vault Project - Ansible-vault CVE

Filtered by vendor Ansible-vault Project Subscribe

Filtered by product Ansible-vault

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2017-2809	1 Ansible-vault Project	1 Ansible-vault	2024-02-04	6.8 MEDIUM	7.8 HIGH
An exploitable vulnerability exists in the yaml loading functionality of ansible-vault before 1.0.5. A specially crafted vault can execute arbitrary python commands resulting in command execution. An attacker can insert python into the vault to trigger this vulnerability.

Vulnerabilities (CVE)