CVE-2020-10691

Description

An archive traversal flaw was found in all ansible-engine versions 2.9.x prior to 2.9.7, when running ansible-galaxy collection install. When extracting a collection .tar.gz file, the directory is created without sanitizing the filename. An attacker could take advantage to overwrite any file within the system.

CVSS breakdown

CVSS 3.1

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Changed

Confidentiality

None

Integrity

Low

Availability

Low

Affected products

Red Hat / Ansibleall ansible-engine versions 2.9.x prior to 2.9.7 – all ansible-engine versions 2.9.x prior to 2.9.7

References

MISChttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10691
PATCHhttps://github.com/ansible/ansible/pull/68596