Skip to content

Commit a70c5d1

Browse files
advisory-database[bot]advisory-database[bot]
committed
1 parent ad3ac99 commit a70c5d1

File tree

1 file changed

+73
-0
lines changed

1 file changed

+73
-0
lines changed

advisories/github-reviewed/2025/10/GHSA-f556-49jc-4rvc/GHSA-f556-49jc-4rvc.json

Lines changed: 73 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,73 @@
1+
{
2+
"schema_version": "1.4.0",
3+
"id": "GHSA-f556-49jc-4rvc",
4+
"modified": "2025-10-31T17:31:57Z",
5+
"published": "2025-10-31T17:31:57Z",
6+
"aliases": [
7+
"CVE-2020-25635"
8+
],
9+
"summary": "Ansible does not collect garbage after playbook run",
10+
"details": "A flaw was found in Ansible Base when using the aws_ssm connection plugin as its garbage collector is not happening after the playbook run is completed. Files would remain in the bucket exposing the data. This issue directly affects data confidentiality.",
11+
"severity": [
12+
{
13+
"type": "CVSS_V3",
14+
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N"
15+
}
16+
],
17+
"affected": [
18+
{
19+
"package": {
20+
"ecosystem": "PyPI",
21+
"name": "ansible"
22+
},
23+
"ranges": [
24+
{
25+
"type": "ECOSYSTEM",
26+
"events": [
27+
{
28+
"introduced": "0"
29+
},
30+
{
31+
"fixed": "2.10.1"
32+
}
33+
]
34+
}
35+
]
36+
}
37+
],
38+
"references": [
39+
{
40+
"type": "ADVISORY",
41+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25635"
42+
},
43+
{
44+
"type": "WEB",
45+
"url": "https://github.com/ansible-collections/community.aws/issues/222"
46+
},
47+
{
48+
"type": "WEB",
49+
"url": "https://github.com/ansible-collections/community.aws/pull/237#issuecomment-1468591094"
50+
},
51+
{
52+
"type": "WEB",
53+
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-25635"
54+
},
55+
{
56+
"type": "PACKAGE",
57+
"url": "https://github.com/ansible/ansible"
58+
},
59+
{
60+
"type": "WEB",
61+
"url": "https://github.com/pypa/advisory-database/tree/main/vulns/ansible/PYSEC-2020-220.yaml"
62+
}
63+
],
64+
"database_specific": {
65+
"cwe_ids": [
66+
"CWE-212"
67+
],
68+
"severity": "MODERATE",
69+
"github_reviewed": true,
70+
"github_reviewed_at": "2025-10-31T17:31:57Z",
71+
"nvd_published_at": "2020-10-05T14:15:00Z"
72+
}
73+
}

0 commit comments

Comments
 (0)