Security Advisory

CVE-2023-5189

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-11-14 22:57:00

Last updated 2025-11-20 17:30:17

Assigner redhat

State PUBLISHED

Description

A path traversal vulnerability exists in Ansible when extracting tarballs. An attacker could craft a malicious tarball so that when using the galaxy importer of Ansible Automation Hub, a symlink could be dropped on the disk, resulting in files being overwritten.

← Browse all CVEs View on cve.org ↗