Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Event-driven automation in ansible automation platform (aap): ansible event-driven automation (eda) lacks encryption
Vulnerability Description
A flaw was found in Event-Driven Automation (EDA) in Ansible Automation Platform (AAP), which lacks encryption of sensitive information. An attacker with network access could exploit this vulnerability by sniffing the plaintext data transmitted between the EDA and AAP. An attacker with system access could exploit this vulnerability by reading the plaintext data stored in EDA and AAP databases.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
敏感数据的明文传输
Vulnerability Title
Red Hat Ansible Automation Platform 安全漏洞
Vulnerability Description
Red Hat Ansible Automation Platform(Red Hat AAP)是美国红帽(Red Hat)公司的一款实现战略性自动化的统一解决方案。 Red Hat Ansible Automation Platform存在安全漏洞,该漏洞源于缺乏敏感信息加密,具有网络访问权限的攻击者可以通过嗅探传输的纯文本数据。
CVSS Information
N/A
Vulnerability Type
N/A