CVE-2020-1737
Description
A flaw was found in Ansible 2.7.17 and prior, 2.8.9 and prior, and 2.9.6 and prior when using the Extract-Zip function from the win_unzip module as the extracted file(s) are not checked if they belong to the destination folder. An attacker could take advantage of this flaw by crafting an archive anywhere in the file system, using a path traversal. This issue is fixed in 2.10.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.119
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple vulnerabilities are fixed in Python-ansible 2.7.17 | Windows |
| Vulnerabilities CVE-2020-10729,CVE-2020-1737 are fixed in Python-ansible 2.9.6 | Windows |
| Vulnerabilities CVE-2020-1737 are fixed in Python-ansible 2.8.9 | Windows |
| Multiple vulnerabilities are affected in Python-ansible 2.7.16 | Windows |
| Multiple vulnerabilities are fixed in Python-ansible for linux 2.7.17 | Linux |
| Vulnerabilities CVE-2020-10729,CVE-2020-1737 are fixed in Python-ansible for linux 2.9.6 | Linux |
| Vulnerabilities CVE-2020-1737 are fixed in Python-ansible for linux 2.8.9 | Linux |
| Multiple vulnerabilities are affected in Python-ansible for linux 2.7.16 | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234