Components Vulnerabilities Pricing MCP API

ansible 10.7.0 | Vulnerabilities | Sonatype Guide

ansible

10.7.0

ansible 10.7.0

PublishedDec 3, 2024•Policy

compliance

Developer Trust Score

N/A

Recommended Version:x.y.z

Latest version with 0 known vulnerabilities that meets your policy.

Compare Versions

Severity

Critical (0)

High (0)

Medium (2)

Low (2)

CVSS Score

0.010.0

EPSS Score

0.01.0

Malware

KEV StatusPublished

6.8CVE-2025-14010

A flaw was found in ansible-collection-community-general. This vulnerability allows for information exposure (IE) of sensitive credentials, specifically plaintext passwords, via verbose output when running Ansible with debug modes. Attackers with access to logs could retrieve these secrets and potentially compromise Keycloak accounts or administrative access.

PublishedDec 5, 2025

3.1CVE-2025-53861

A flaw was found in Ansible. Sensitive cookies without security flags over non-encrypted channels can lead to Man-in-the-Middle (MitM) and Cross-site scripting (XSS) attacks allowing attackers to read transmitted data.

PublishedJul 11, 2025

3.5CVE-2025-53862

A flaw was found in Ansible. Three API endpoints are accessible and return verbose, unauthenticated responses. This flaw allows a malicious user to access data that may contain important information.

PublishedJul 11, 2025

5.5sonatype-2021-4955

ansible - Insertion of Sensitive Information into Log File

PublishedAug 29, 2022