VDB
DEBIAN-CVE-2020-1735
DEBIAN-CVE-2020-1735
PUBLISHED
CVSS 4.599999904632568 MEDIUM
A flaw was found in the Ansible Engine when the fetch module is used. An attacker could intercept the module, inject a new path, and then choose a new destination path on the controller node. All versions in 2.7.x, 2.8.x and 2.9.x branches are believed to be vulnerable.
Risk Scores
CVSS 3.1
4.599999904632568
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:14 | ansible | 0, 0, 0 |
| Debian:11 | ansible | 0, 0, 0 |
| Debian:13 | ansible | 0, 0, 0 |
| Debian:12 | ansible | 0, 0, 0 |
Timeline
- Mar 16, 2020 CVE Published
- Apr 28, 2026 CVE Updated