Vulnerability CVE-2020-1737

Vulnerability CVE-2020-1737

Published: 2020-03-09

Description:

Type:

(Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
4.6/10	6.4/10	3.9/10

Affected software
Redhat -> Ansible engine
Redhat -> Ansible tower

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1737

https://github.com/ansible/ansible/issues/67795

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FWDK3QUVBULS3Q3PQTGEKUQYPSNOU5M3/

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QT27K5ZRGDPCH7GT3DRI3LO4IVDVQUB7/

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U3IMV3XEIUXL6S4KPLYYM4TVJQ2VNEP2/