When running Tower prior to 3.4.3 on OpenShift or Kubernetes, application credentials are exposed to playbook job runs via environment variables. A malicious user with the ability to write playbooks could use this to gain administrative privileges.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat ansible tower |