CVE-2018-1000149

A man in the middle vulnerability exists in Jenkins Ansible Plugin 0.8 and older in AbstractAnsibleInvocation.java, AnsibleAdHocCommandBuilder.java, AnsibleAdHocCommandInvocationTest.java, AnsibleContext.java, AnsibleJobDslExtension.java, AnsiblePlaybookBuilder.java, AnsiblePlaybookStep.java that disables host key verification by default.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:jenkins:ansible:*:*:*:*:*:jenkins:*:*

History

No history.

Information

Published : 2018-04-05 13:29

Updated : 2024-02-28 16:25


NVD link : CVE-2018-1000149

Mitre link : CVE-2018-1000149

CVE.ORG link : CVE-2018-1000149


JSON object : View

Products Affected

jenkins

  • ansible