CVE-2013-2233
7.4HIGHAnsible before 1.2.1 makes it easier for remote attackers to conduct man-in-the-middle attacks by leveraging failure to cache SSH host keys.
Published: 5/4/2018Updated: 11/21/2024
Description
Ansible before 1.2.1 makes it easier for remote attackers to conduct man-in-the-middle attacks by leveraging failure to cache SSH host keys.
AI AnalysisPowered by AI
Affected Products
redhatansible
References
- http://www.openwall.com/lists/oss-security/2013/07/01/2Mailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2013/07/02/6Mailing ListThird Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=980821Issue Tracking
- https://github.com/ansible/ansible/issues/857Issue TrackingThird Party Advisory
- https://www.ansible.com/securityVendor Advisory
- http://www.openwall.com/lists/oss-security/2013/07/01/2Mailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2013/07/02/6Mailing ListThird Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=980821Issue Tracking
- https://github.com/ansible/ansible/issues/857Issue TrackingThird Party Advisory
- https://www.ansible.com/securityVendor Advisory