All 5 CVE vulnerabilities found in Red Hat Ansible Automation Platform 2.4 for RHEL 8, with AI-generated Chinese analysis, references, and POCs.
Vendor: Red Hat
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-1394 | Golang-fips/openssl: memory leaks in code encrypting and decrypting rsa payloads CWE-401 | 7.5 | High | 2024-03-21 |
| CVE-2023-5764 | Ansible: template injection CWE-1336 | 7.1 | High | 2023-12-12 |
| CVE-2023-5189 | Hub: insecure galaxy-importer tarfile extraction CWE-23 | 6.3 | Medium | 2023-11-14 |
| CVE-2023-4380 | Platform: token exposed at importing project CWE-532 | 6.3 | Medium | 2023-10-04 |
| CVE-2023-4237 | Platform: ec2_key module prints out the private key directly to the standard output CWE-497 | 7.3 | High | 2023-10-04 |
All 5 known CVE vulnerabilities affecting Red Hat Ansible Automation Platform 2.4 for RHEL 8 with full Chinese analysis, references, and POCs where available.