vulnerability
FreeBSD: VID-67dbeeb6-80f4-11ea-bafd-815569f3852d (CVE-2020-1739): ansible - subversion password leak from PID
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 3 | (AV:L/AC:M/Au:N/C:P/I:P/A:N) | Apr 17, 2020 | Apr 18, 2020 | Mar 25, 2026 |
Severity
3
CVSS
(AV:L/AC:M/Au:N/C:P/I:P/A:N)
Published
Apr 17, 2020
Added
Apr 18, 2020
Modified
Mar 25, 2026
Description
Borja Tarraso reports: A flaw was found in Ansible 2.7.16 and prior, 2.8.8 and prior, and 2.9.5 and prior when a password is set with the argument "password" of svn module, it is used on svn command line, disclosing to other users within the same node. An attacker could take advantage by reading the cmdline file from that particular PID on the procfs.
Solutions
freebsd-upgrade-package-ansiblefreebsd-upgrade-package-ansible27freebsd-upgrade-package-ansible26freebsd-upgrade-package-ansible25freebsd-upgrade-package-ansible24freebsd-upgrade-package-ansible23
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.