cvelistv5 - cve-2019-14890

cve-2019-14890

Vulnerability from cvelistv5

Published

2019-11-26 06:46

Modified

2024-08-05 00:26

Severity ?

8.4 (High) - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

Summary

A vulnerability was found in Ansible Tower before 3.6.1 where an attacker with low privilege could retrieve usernames and passwords credentials from the new RHSM saved in plain text into the database at '/api/v2/config' when applying the Ansible Tower license.

References

▼	URL	Tags
	secalert@redhat.com	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14890	Issue Tracking, Third Party Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14890	Issue Tracking, Third Party Advisory

Impacted products

Vendor

Product

Version

▼

[UNKNOWN]

Tower

Version: 3.6.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T00:26:39.098Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14890"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Tower",
          "vendor": "[UNKNOWN]",
          "versions": [
            {
              "status": "affected",
              "version": "3.6.1"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability was found in Ansible Tower before 3.6.1 where an attacker with low privilege could retrieve usernames and passwords credentials from the new RHSM saved in plain text into the database at \u0027/api/v2/config\u0027 when applying the Ansible Tower license."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-312",
              "description": "CWE-312",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-12-02T14:17:50",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14890"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2019-14890",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Tower",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "3.6.1"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "[UNKNOWN]"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A vulnerability was found in Ansible Tower before 3.6.1 where an attacker with low privilege could retrieve usernames and passwords credentials from the new RHSM saved in plain text into the database at \u0027/api/v2/config\u0027 when applying the Ansible Tower license."
            }
          ]
        },
        "impact": {
          "cvss": [
            [
              {
                "vectorString": "8.4/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N",
                "version": "3.0"
              }
            ]
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-312"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14890",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14890"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2019-14890",
    "datePublished": "2019-11-26T06:46:17",
    "dateReserved": "2019-08-10T00:00:00",
    "dateUpdated": "2024-08-05T00:26:39.098Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:ansible_tower:3.6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CAB72DD4-9596-40F3-AFB6-BA06605187A0\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"A vulnerability was found in Ansible Tower before 3.6.1 where an attacker with low privilege could retrieve usernames and passwords credentials from the new RHSM saved in plain text into the database at \u0027/api/v2/config\u0027 when applying the Ansible Tower license.\"}, {\"lang\": \"es\", \"value\": \"Se encontr\\u00f3 una vulnerabilidad en Ansible Tower anterior de  la versi\\u00f3n 3.6.1, donde un atacante con pocos privilegios pod\\u00eda recuperar nombres de usuario y credenciales de contrase\\u00f1as del nuevo RHSM guardado en texto plano en la base de datos en \u0027/ api / v2 / config\u0027 al aplicar la licencia de Ansible Tower.\"}]",
      "id": "CVE-2019-14890",
      "lastModified": "2024-11-21T04:27:37.287",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N\", \"baseScore\": 8.4, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.0, \"impactScore\": 5.8}], \"cvssMetricV30\": [{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N\", \"baseScore\": 8.4, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.0, \"impactScore\": 5.8}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:L/Au:N/C:P/I:N/A:N\", \"baseScore\": 2.1, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"LOW\", \"exploitabilityScore\": 3.9, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2019-11-26T07:15:11.163",
      "references": "[{\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14890\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14890\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}]",
      "sourceIdentifier": "secalert@redhat.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-312\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-312\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2019-14890\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2019-11-26T07:15:11.163\",\"lastModified\":\"2024-11-21T04:27:37.287\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A vulnerability was found in Ansible Tower before 3.6.1 where an attacker with low privilege could retrieve usernames and passwords credentials from the new RHSM saved in plain text into the database at \u0027/api/v2/config\u0027 when applying the Ansible Tower license.\"},{\"lang\":\"es\",\"value\":\"Se encontr\u00f3 una vulnerabilidad en Ansible Tower anterior de  la versi\u00f3n 3.6.1, donde un atacante con pocos privilegios pod\u00eda recuperar nombres de usuario y credenciales de contrase\u00f1as del nuevo RHSM guardado en texto plano en la base de datos en \u0027/ api / v2 / config\u0027 al aplicar la licencia de Ansible Tower.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N\",\"baseScore\":8.4,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.0,\"impactScore\":5.8}],\"cvssMetricV30\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N\",\"baseScore\":8.4,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.0,\"impactScore\":5.8}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:P/I:N/A:N\",\"baseScore\":2.1,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":3.9,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-312\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-312\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:ansible_tower:3.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CAB72DD4-9596-40F3-AFB6-BA06605187A0\"}]}]}],\"references\":[{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14890\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14890\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]}]}}"
  }
}

rhsa-2019_3958

Vulnerability from csaf_redhat

Published

2019-11-25 14:20

Modified

2024-11-22 14:12

Summary

Red Hat Security Advisory: Red Hat Ansible Tower 3.6.1-1 - EL7 Container

Notes

Topic

Red Hat Ansible Tower 3.6.1-1 - EL7 Container

Details

Ansible Tower Version 3.6.1 ----------------------------- - Fixed accidental disclosure of Red Hat username and password in /api/v2/config (CVE-2019-14890) - Fixed upgrade failure with bundled installer - Fixed license check error when reinstalling over a partially-installed Tower - Fixed database restore when using a PostgreSQL pod - Fixed error when CA data was missing for a container group credential - Fixed error when a container group job was launched when Tower was out of capacity - Fixed a few minor issues in the AWX modules collection

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Critical"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Red Hat Ansible Tower 3.6.1-1 - EL7 Container",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Ansible Tower Version 3.6.1\n-----------------------------\n\n- Fixed accidental disclosure of Red Hat username and password in \n  /api/v2/config (CVE-2019-14890)\n- Fixed upgrade failure with bundled installer\n- Fixed license check error when reinstalling over a partially-installed \n  Tower\n- Fixed database restore when using a PostgreSQL pod\n- Fixed error when CA data was missing for a container group credential\n- Fixed error when a container group job was launched when Tower was out \n  of capacity\n- Fixed a few minor issues in the AWX modules collection",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2019:3958",
        "url": "https://access.redhat.com/errata/RHSA-2019:3958"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#critical",
        "url": "https://access.redhat.com/security/updates/classification/#critical"
      },
      {
        "category": "external",
        "summary": "1773622",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1773622"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_3958.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat Ansible Tower 3.6.1-1 - EL7 Container",
    "tracking": {
      "current_release_date": "2024-11-22T14:12:15+00:00",
      "generator": {
        "date": "2024-11-22T14:12:15+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2019:3958",
      "initial_release_date": "2019-11-25T14:20:18+00:00",
      "revision_history": [
        {
          "date": "2019-11-25T14:20:18+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2019-11-25T14:20:18+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-22T14:12:15+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Ansible Tower 3.6 for RHEL 7",
                "product": {
                  "name": "Red Hat Ansible Tower 3.6 for RHEL 7",
                  "product_id": "7Server-Ansible-Tower-3.6",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:ansible_tower:3.6::el7"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Ansible Tower"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64",
                "product": {
                  "name": "ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64",
                  "product_id": "ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa?arch=amd64\u0026repository_url=registry.redhat.io/ansible-tower-36/ansible-tower\u0026tag=3.6.1-1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "amd64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64 as a component of Red Hat Ansible Tower 3.6 for RHEL 7",
          "product_id": "7Server-Ansible-Tower-3.6:ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64"
        },
        "product_reference": "ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64",
        "relates_to_product_reference": "7Server-Ansible-Tower-3.6"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Victor da Costa"
          ],
          "organization": "Red Hat",
          "summary": "This issue was discovered by Red Hat."
        }
      ],
      "cve": "CVE-2019-14890",
      "cwe": {
        "id": "CWE-312",
        "name": "Cleartext Storage of Sensitive Information"
      },
      "discovery_date": "2019-11-16T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1773622"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Ansible Tower where the RHSM credentials are saved in plain text in the database that is available at \u0027/api/v2/config\u0027 after applying the Ansible Tower license. Attackers with this information could log into RHSM and modify licenses and make other changes.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Tower: RHSM username and password exposed after license application",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Ansible Tower 3.6.0 is affected, but Ansible Tower 3.5, 3.4, and 3.3 are not vulnerable as they do not include the new RHSM.\n\nCloudForms 5.9 and 5.10 are not vulnerable as they do not use Ansible Tower 3.6.0.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-Ansible-Tower-3.6:ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-14890"
        },
        {
          "category": "external",
          "summary": "RHBZ#1773622",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1773622"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-14890",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-14890"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-14890",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14890"
        }
      ],
      "release_date": "2019-11-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-11-25T14:20:18+00:00",
          "details": "For information on upgrading Ansible Tower, reference the Ansible Tower Upgrade and Migration Guide: https://docs.ansible.com/ansible-tower/latest/html/upgrade-migration-guide/index.html",
          "product_ids": [
            "7Server-Ansible-Tower-3.6:ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:3958"
        },
        {
          "category": "workaround",
          "details": "There is no mitigation for this issue since this issue happens when Red Hat license is applied.",
          "product_ids": [
            "7Server-Ansible-Tower-3.6:ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N",
            "version": "3.0"
          },
          "products": [
            "7Server-Ansible-Tower-3.6:ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "Tower: RHSM username and password exposed after license application"
    }
  ]
}

RHSA-2019:3958

Vulnerability from csaf_redhat

Published

2019-11-25 14:20

Modified

2024-11-22 14:12

Summary

Red Hat Security Advisory: Red Hat Ansible Tower 3.6.1-1 - EL7 Container

Notes

Topic

Red Hat Ansible Tower 3.6.1-1 - EL7 Container

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Critical"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Red Hat Ansible Tower 3.6.1-1 - EL7 Container",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Ansible Tower Version 3.6.1\n-----------------------------\n\n- Fixed accidental disclosure of Red Hat username and password in \n  /api/v2/config (CVE-2019-14890)\n- Fixed upgrade failure with bundled installer\n- Fixed license check error when reinstalling over a partially-installed \n  Tower\n- Fixed database restore when using a PostgreSQL pod\n- Fixed error when CA data was missing for a container group credential\n- Fixed error when a container group job was launched when Tower was out \n  of capacity\n- Fixed a few minor issues in the AWX modules collection",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2019:3958",
        "url": "https://access.redhat.com/errata/RHSA-2019:3958"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#critical",
        "url": "https://access.redhat.com/security/updates/classification/#critical"
      },
      {
        "category": "external",
        "summary": "1773622",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1773622"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_3958.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat Ansible Tower 3.6.1-1 - EL7 Container",
    "tracking": {
      "current_release_date": "2024-11-22T14:12:15+00:00",
      "generator": {
        "date": "2024-11-22T14:12:15+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2019:3958",
      "initial_release_date": "2019-11-25T14:20:18+00:00",
      "revision_history": [
        {
          "date": "2019-11-25T14:20:18+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2019-11-25T14:20:18+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-22T14:12:15+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Ansible Tower 3.6 for RHEL 7",
                "product": {
                  "name": "Red Hat Ansible Tower 3.6 for RHEL 7",
                  "product_id": "7Server-Ansible-Tower-3.6",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:ansible_tower:3.6::el7"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Ansible Tower"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64",
                "product": {
                  "name": "ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64",
                  "product_id": "ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa?arch=amd64\u0026repository_url=registry.redhat.io/ansible-tower-36/ansible-tower\u0026tag=3.6.1-1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "amd64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64 as a component of Red Hat Ansible Tower 3.6 for RHEL 7",
          "product_id": "7Server-Ansible-Tower-3.6:ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64"
        },
        "product_reference": "ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64",
        "relates_to_product_reference": "7Server-Ansible-Tower-3.6"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Victor da Costa"
          ],
          "organization": "Red Hat",
          "summary": "This issue was discovered by Red Hat."
        }
      ],
      "cve": "CVE-2019-14890",
      "cwe": {
        "id": "CWE-312",
        "name": "Cleartext Storage of Sensitive Information"
      },
      "discovery_date": "2019-11-16T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1773622"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Ansible Tower where the RHSM credentials are saved in plain text in the database that is available at \u0027/api/v2/config\u0027 after applying the Ansible Tower license. Attackers with this information could log into RHSM and modify licenses and make other changes.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Tower: RHSM username and password exposed after license application",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Ansible Tower 3.6.0 is affected, but Ansible Tower 3.5, 3.4, and 3.3 are not vulnerable as they do not include the new RHSM.\n\nCloudForms 5.9 and 5.10 are not vulnerable as they do not use Ansible Tower 3.6.0.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-Ansible-Tower-3.6:ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-14890"
        },
        {
          "category": "external",
          "summary": "RHBZ#1773622",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1773622"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-14890",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-14890"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-14890",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14890"
        }
      ],
      "release_date": "2019-11-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-11-25T14:20:18+00:00",
          "details": "For information on upgrading Ansible Tower, reference the Ansible Tower Upgrade and Migration Guide: https://docs.ansible.com/ansible-tower/latest/html/upgrade-migration-guide/index.html",
          "product_ids": [
            "7Server-Ansible-Tower-3.6:ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:3958"
        },
        {
          "category": "workaround",
          "details": "There is no mitigation for this issue since this issue happens when Red Hat license is applied.",
          "product_ids": [
            "7Server-Ansible-Tower-3.6:ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N",
            "version": "3.0"
          },
          "products": [
            "7Server-Ansible-Tower-3.6:ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "Tower: RHSM username and password exposed after license application"
    }
  ]
}

rhsa-2019:3958

Vulnerability from csaf_redhat

Published

2019-11-25 14:20

Modified

2024-11-22 14:12

Summary

Red Hat Security Advisory: Red Hat Ansible Tower 3.6.1-1 - EL7 Container

Notes

Topic

Red Hat Ansible Tower 3.6.1-1 - EL7 Container

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Critical"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Red Hat Ansible Tower 3.6.1-1 - EL7 Container",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Ansible Tower Version 3.6.1\n-----------------------------\n\n- Fixed accidental disclosure of Red Hat username and password in \n  /api/v2/config (CVE-2019-14890)\n- Fixed upgrade failure with bundled installer\n- Fixed license check error when reinstalling over a partially-installed \n  Tower\n- Fixed database restore when using a PostgreSQL pod\n- Fixed error when CA data was missing for a container group credential\n- Fixed error when a container group job was launched when Tower was out \n  of capacity\n- Fixed a few minor issues in the AWX modules collection",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2019:3958",
        "url": "https://access.redhat.com/errata/RHSA-2019:3958"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#critical",
        "url": "https://access.redhat.com/security/updates/classification/#critical"
      },
      {
        "category": "external",
        "summary": "1773622",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1773622"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_3958.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat Ansible Tower 3.6.1-1 - EL7 Container",
    "tracking": {
      "current_release_date": "2024-11-22T14:12:15+00:00",
      "generator": {
        "date": "2024-11-22T14:12:15+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2019:3958",
      "initial_release_date": "2019-11-25T14:20:18+00:00",
      "revision_history": [
        {
          "date": "2019-11-25T14:20:18+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2019-11-25T14:20:18+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-22T14:12:15+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Ansible Tower 3.6 for RHEL 7",
                "product": {
                  "name": "Red Hat Ansible Tower 3.6 for RHEL 7",
                  "product_id": "7Server-Ansible-Tower-3.6",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:ansible_tower:3.6::el7"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Ansible Tower"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64",
                "product": {
                  "name": "ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64",
                  "product_id": "ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa?arch=amd64\u0026repository_url=registry.redhat.io/ansible-tower-36/ansible-tower\u0026tag=3.6.1-1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "amd64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64 as a component of Red Hat Ansible Tower 3.6 for RHEL 7",
          "product_id": "7Server-Ansible-Tower-3.6:ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64"
        },
        "product_reference": "ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64",
        "relates_to_product_reference": "7Server-Ansible-Tower-3.6"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Victor da Costa"
          ],
          "organization": "Red Hat",
          "summary": "This issue was discovered by Red Hat."
        }
      ],
      "cve": "CVE-2019-14890",
      "cwe": {
        "id": "CWE-312",
        "name": "Cleartext Storage of Sensitive Information"
      },
      "discovery_date": "2019-11-16T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1773622"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Ansible Tower where the RHSM credentials are saved in plain text in the database that is available at \u0027/api/v2/config\u0027 after applying the Ansible Tower license. Attackers with this information could log into RHSM and modify licenses and make other changes.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Tower: RHSM username and password exposed after license application",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Ansible Tower 3.6.0 is affected, but Ansible Tower 3.5, 3.4, and 3.3 are not vulnerable as they do not include the new RHSM.\n\nCloudForms 5.9 and 5.10 are not vulnerable as they do not use Ansible Tower 3.6.0.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-Ansible-Tower-3.6:ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-14890"
        },
        {
          "category": "external",
          "summary": "RHBZ#1773622",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1773622"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-14890",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-14890"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-14890",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14890"
        }
      ],
      "release_date": "2019-11-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-11-25T14:20:18+00:00",
          "details": "For information on upgrading Ansible Tower, reference the Ansible Tower Upgrade and Migration Guide: https://docs.ansible.com/ansible-tower/latest/html/upgrade-migration-guide/index.html",
          "product_ids": [
            "7Server-Ansible-Tower-3.6:ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:3958"
        },
        {
          "category": "workaround",
          "details": "There is no mitigation for this issue since this issue happens when Red Hat license is applied.",
          "product_ids": [
            "7Server-Ansible-Tower-3.6:ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N",
            "version": "3.0"
          },
          "products": [
            "7Server-Ansible-Tower-3.6:ansible-tower-36/ansible-tower@sha256:bfc301f3d789f1c1d9cede65934015124447bba752b8033b68ab9e60156e81aa_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "Tower: RHSM username and password exposed after license application"
    }
  ]
}

gsd-2019-14890

Vulnerability from gsd

Modified

2023-12-13 01:23

Details

Aliases

CVE-2019-14890

Aliases

CVE-2019-14890

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2019-14890",
    "description": "A vulnerability was found in Ansible Tower before 3.6.1 where an attacker with low privilege could retrieve usernames and passwords credentials from the new RHSM saved in plain text into the database at \u0027/api/v2/config\u0027 when applying the Ansible Tower license.",
    "id": "GSD-2019-14890",
    "references": [
      "https://access.redhat.com/errata/RHSA-2019:3958"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2019-14890"
      ],
      "details": "A vulnerability was found in Ansible Tower before 3.6.1 where an attacker with low privilege could retrieve usernames and passwords credentials from the new RHSM saved in plain text into the database at \u0027/api/v2/config\u0027 when applying the Ansible Tower license.",
      "id": "GSD-2019-14890",
      "modified": "2023-12-13T01:23:52.980836Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secalert@redhat.com",
        "ID": "CVE-2019-14890",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Tower",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "3.6.1"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "[UNKNOWN]"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "A vulnerability was found in Ansible Tower before 3.6.1 where an attacker with low privilege could retrieve usernames and passwords credentials from the new RHSM saved in plain text into the database at \u0027/api/v2/config\u0027 when applying the Ansible Tower license."
          }
        ]
      },
      "impact": {
        "cvss": [
          [
            {
              "vectorString": "8.4/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N",
              "version": "3.0"
            }
          ]
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "CWE-312"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14890",
            "refsource": "CONFIRM",
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14890"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:redhat:ansible_tower:3.6.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2019-14890"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "A vulnerability was found in Ansible Tower before 3.6.1 where an attacker with low privilege could retrieve usernames and passwords credentials from the new RHSM saved in plain text into the database at \u0027/api/v2/config\u0027 when applying the Ansible Tower license."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-312"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14890",
              "refsource": "CONFIRM",
              "tags": [
                "Issue Tracking",
                "Third Party Advisory"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14890"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 2.1,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "LOW",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N",
            "version": "3.1"
          },
          "exploitabilityScore": 2.0,
          "impactScore": 5.8
        }
      },
      "lastModifiedDate": "2019-12-17T18:07Z",
      "publishedDate": "2019-11-26T07:15Z"
    }
  }
}

cve-2019-14890

Vulnerability from fkie_nvd

Published

2019-11-26 07:15

Modified

2024-11-21 04:27

Severity ?

8.4 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

Summary

References

▼	URL	Tags
	secalert@redhat.com	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14890	Issue Tracking, Third Party Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14890	Issue Tracking, Third Party Advisory

Impacted products

	Vendor	Product	Version
	redhat	ansible_tower	3.6.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:redhat:ansible_tower:3.6.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "CAB72DD4-9596-40F3-AFB6-BA06605187A0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability was found in Ansible Tower before 3.6.1 where an attacker with low privilege could retrieve usernames and passwords credentials from the new RHSM saved in plain text into the database at \u0027/api/v2/config\u0027 when applying the Ansible Tower license."
    },
    {
      "lang": "es",
      "value": "Se encontr\u00f3 una vulnerabilidad en Ansible Tower anterior de  la versi\u00f3n 3.6.1, donde un atacante con pocos privilegios pod\u00eda recuperar nombres de usuario y credenciales de contrase\u00f1as del nuevo RHSM guardado en texto plano en la base de datos en \u0027/ api / v2 / config\u0027 al aplicar la licencia de Ansible Tower."
    }
  ],
  "id": "CVE-2019-14890",
  "lastModified": "2024-11-21T04:27:37.287",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "LOW",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 2.1,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "NONE",
          "baseScore": 8.4,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "CHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N",
          "version": "3.0"
        },
        "exploitabilityScore": 2.0,
        "impactScore": 5.8,
        "source": "secalert@redhat.com",
        "type": "Secondary"
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "NONE",
          "baseScore": 8.4,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "CHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 2.0,
        "impactScore": 5.8,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2019-11-26T07:15:11.163",
  "references": [
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Issue Tracking",
        "Third Party Advisory"
      ],
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14890"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Issue Tracking",
        "Third Party Advisory"
      ],
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14890"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-312"
        }
      ],
      "source": "secalert@redhat.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-312"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

ghsa-785w-m3xw-jfp8

Vulnerability from github

Published

2022-05-24 17:02

Modified

2024-04-04 02:40

Severity ?

8.4 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

Details

An attacker with low privilege could retrieve usernames and passwords credentials from the new RHSM saved in plain text into the database at '/api/v2/config' when applying the Ansible Tower license.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2019-14890"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-312"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2019-11-26T07:15:00Z",
    "severity": "HIGH"
  },
  "details": "An attacker with low privilege could retrieve usernames and passwords credentials from the new RHSM saved in plain text into the database at \u0027/api/v2/config\u0027 when applying the Ansible Tower license.",
  "id": "GHSA-785w-m3xw-jfp8",
  "modified": "2024-04-04T02:40:46Z",
  "published": "2022-05-24T17:02:07Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14890"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14890"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N",
      "type": "CVSS_V3"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

cve-2019-14890

Vulnerability from cvelistv5

rhsa-2019_3958

Vulnerability from csaf_redhat

RHSA-2019:3958

Vulnerability from csaf_redhat

rhsa-2019:3958

Vulnerability from csaf_redhat

gsd-2019-14890

Vulnerability from gsd

cve-2019-14890

Vulnerability from fkie_nvd

ghsa-785w-m3xw-jfp8

Vulnerability from github

Tags

Sightings

Nomenclature