Ansible password prompts could expose passwords
High severity
GitHub Reviewed
Published
May 24, 2022
to the GitHub Advisory Database
•
Updated Nov 18, 2024
Package
Affected versions
>= 2.8.0, < 2.8.4
>= 2.7.0, < 2.7.13
>= 2.6.0, < 2.6.19
Patched versions
2.8.4
2.7.13
2.6.19
Description
Published by the National Vulnerability Database
Nov 22, 2019
Published to the GitHub Advisory Database
May 24, 2022
Reviewed
Oct 7, 2022
Last updated
Nov 18, 2024
ansible-playbook -k and ansible cli tools, all versions 2.8.x before 2.8.4, all 2.7.x before 2.7.13 and all 2.6.x before 2.6.19, prompt passwords by expanding them from templates as they could contain special characters. Passwords should be wrapped to prevent templates trigger and exposing them.
References