foreman_ansible 0.1.0
1 security vulnerability
found in version
0.1.0
Missing Authentication for Critical Function in Foreman Ansible
critical severity CVE-2021-3589
critical severity
CVE-2021-3589
Patched versions:
>= 2.0.0
An authorization flaw was found in Foreman Ansible. An authenticated attacker with certain permissions to create and run Ansible jobs can access hosts through job templates. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
No officially reported memory leakage issues detected.
This gem version does not have any officially reported memory leaked issues.
Author did not declare license for this gem in the gemspec.
This gem version has a GPL-3.0-only license in the source code, however it was not declared in the gemspec file.
This gem version is available.
This gem version has not been yanked and is still available for usage.