Identifier

CVE-2020-25635

Package Slug

pypi/ansible

Vulnerability

Improper Cross-boundary Removal of Sensitive Data

Description

A flaw was found in Ansible Base when using the aws_ssm connection plugin as garbage collector is not happening after playbook run is completed. Files would remain in the bucket exposing the data. This issue affects directly data confidentiality.

Affected Versions

Version 2.10.1

Solution

Unfortunately, there is no solution available yet.

Last Modified

2020-10-09

source