CVE-2016-3096 – ansible

Package

Manager: pip
Name: ansible
Vulnerable Version: >=2.0.0.0 <2.0.2.0 || >=0 <1.9.6.1

Severity

Level: High

CVSS v3.1: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

EPSS: 0.00077 pctl0.23686

Details

Link Following in ansible The `create_script` function in the `lxc_container` module in Ansible before 1.9.6-1 and 2.x before 2.0.2.0 allows local users to write to arbitrary files or gain privileges via a symlink attack on (1) `/opt/.lxc-attach-script`, (2) the archived container in the `archive_path` directory, or the (3) `lxc-attach-script.log` or (4) `lxc-attach-script.err` files in the temporary directory.

Metadata

Created: 2018-10-10T17:23:45Z
Modified: 2024-09-04T18:55:10Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2018/10/GHSA-rh6x-qvg7-rrmj/GHSA-rh6x-qvg7-rrmj.json
CWE IDs: ["CWE-59"]
Alternative ID: GHSA-rh6x-qvg7-rrmj
Finding: F076
Auto approve: 1