N/A

A flaw was found in Ansible 2.7.17 and prior, 2.8.9 and prior, and 2.9.6 and prior when using the Extract-Zip function from the win_unzip module as the extracted file(s) are not checked if they belong to the destination folder. An attacker could take advantage of this flaw by crafting an archive anywhere in the file system, using a path traversal. This issue is fixed in 2.10.

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H

对路径名的限制不恰当(路径遍历)

Ansible 路径遍历漏洞

Red Hat Ansible是美国红帽（Red Hat）公司的一款计算机系统配置管理器。该产品可用于发布、管理和编排计算机系统。 Ansible中的win_unzip模块的‘Extract-Zip’函数存在路径遍历漏洞。远程攻击者可借助特制ZIP存档利用该漏洞在系统上写入任意文件。以下产品及版本受到影响：Ansible 2.7.17及之前版本，2.8.9及之前版本，2.9.6及之前版本。

N/A

N/A