Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability was found in Ansible Tower before 3.6.1 where an attacker with low privilege could retrieve usernames and passwords credentials from the new RHSM saved in plain text into the database at '/api/v2/config' when applying the Ansible Tower license.
CVSS Information
N/A
Vulnerability Type
敏感数据的明文存储
Vulnerability Title
Ansible Tower 安全漏洞
Vulnerability Description
Ansible是美国Ansible公司的一款计算机系统配置管理器。该产品可用于发布、管理和编排计算机系统。Ansible Tower是其中的一个提供了用户界面(UI)、仪表板和REST API的任务控制应用程序。 Ansible Tower 3.6.1之前版本中存在安全漏洞。攻击者可利用该漏洞检索用户名和密码凭证。
CVSS Information
N/A
Vulnerability Type
N/A