Symlink Attack Vulnerability in Ansible's Chroot, Jail, and Zone Connection Plugins

Symlink Attack Vulnerability in Ansible's Chroot, Jail, and Zone Connection Plugins

CVE-2015-6240 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

The chroot, jail, and zone connection plugins in ansible before 1.9.2 allow local users to escape a restricted environment via a symlink attack.

Learn more about our User Device Pen Test.