A flaw was found in the Ansible Engine when using module_args. Tasks executed with check mode (--check-mode) do not properly neutralize sensitive data exposed in the event data. This flaw allows unauthorized users to read this data. The highest threat from this vulnerability is to confidentiality.
Metrics
Affected Vendors & Products
Advisories
Source | ID | Title |
---|---|---|
![]() |
DSA-4950-1 | ansible security update |
![]() |
EUVD-2020-0026 | A flaw was found in the Ansible Engine when using module_args. Tasks executed with check mode (--check-mode) do not properly neutralize sensitive data exposed in the event data. This flaw allows unauthorized users to read this data. The highest threat from this vulnerability is to confidentiality. |
![]() |
GHSA-j667-c2hm-f2wp | Insertion of Sensitive Information into Log File and Improper Output Neutralization for Logs in ansible |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
No history.

Status: PUBLISHED
Assigner: redhat
Published:
Updated: 2024-08-04T12:39:36.318Z
Reserved: 2020-06-17T00:00:00
Link: CVE-2020-14332

No data.

Status : Modified
Published: 2020-09-11T18:15:13.303
Modified: 2024-11-21T05:03:01.780
Link: CVE-2020-14332


No data.