5

CVSS Score

3.1

Basic Information

CVE ID

CVE-2020-1746

GHSA ID

GHSA-j2h6-73x8-22c4

EPSS Score

0.18492%

CWE

CWE-200

Published

4/20/2021

Updated

9/11/2024

KEV Status

Technology

Python

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2020-1746

CVE-2020-1746: Exposure of Sensitive Information to an Unauthorized Actor in ansible

A flaw was found in the Ansible Engine affecting Ansible Engine versions 2.7.x before 2.7.17 and 2.8.x before 2.8.11 and 2.9.x before 2.9.7 as well as Ansible Tower before and including versions 3.4.5 and 3.5.5 and 3.6.3 when the ldap_attr and ldap_entry community modules are used. The issue discloses the LDAP bind password to stdout or a log file if a playbook task is written using the bind_pw in the parameters field. The highest threat from this vulnerability is data confidentiality.

(GitHub Advisory)

5

CVSS Score

3.1

Basic Information

CVE ID

CVE-2020-1746

GHSA ID

GHSA-j2h6-73x8-22c4

EPSS Score

0.18492%

CWE

CWE-200

Published

4/20/2021

Updated

9/11/2024

KEV Status

Technology

Python

Technical Details

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
ansible	pip	>= 2.8.0a1, < 2.8.11	2.8.11
ansible	pip	>= 2.9.0a1, < 2.9.7	2.9.7
ansible	pip	>= 2.7.0a1, < 2.7.17	2.7.17

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stemmed from modules accepting a 'params' argument that circumvented Ansible's parameter handling. Both ldap_attr.py and ldap_entry.py's main functions merged user-provided 'params' into module parameters without proper security checks for 'bind_pw'. The patches removed 'params' and added explicit checks to block 'bind_pw' via this vector, confirming these functions were the exposure points.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

* *l*w w*s *oun* in t** *nsi*l* *n*in* *****tin* *nsi*l* *n*in* v*rsions *.*.x ***or* *.*.** *n* *.*.x ***or* *.*.** *n* *.*.x ***or* *.*.* *s w*ll *s *nsi*l* Tow*r ***or* *n* in*lu*in* v*rsions *.*.* *n* *.*.* *n* *.*.* w**n t** l**p_*ttr *n* l**p_*

Reasoning

T** vuln*r**ility st*mm** *rom mo*ul*s ****ptin* * 'p*r*ms' *r*um*nt t**t *ir*umv*nt** *nsi*l*'s p*r*m*t*r **n*lin*. *ot* l**p_*ttr.py *n* l**p_*ntry.py's m*in *un*tions m*r*** us*r-provi*** 'p*r*ms' into mo*ul* p*r*m*t*rs wit*out prop*r s**urity ***

5

Basic Information

Concerned about an active attack path?

CVE-2020-1746: Exposure of Sensitive Information to an Unauthorized Actor in ansible

5

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI