A flaw was found in ansible-tower where the default installation is vulnerable to job isolation escape. This flaw allows an malicious user to elevate the privilege from a low privileged user to an AWX user from outside the isolated environment.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat ansible tower 3.0 |
||
redhat ansible automation platform early access 2.0 |
||
redhat ansible automation platform text-only advisories - |
||
redhat ansible_automation_platform 2.0 |
||
redhat ansible_automation_platform 2.1 |