Privilege Escalation Vulnerability in Ansible Tower

Privilege Escalation Vulnerability in Ansible Tower

CVE-2018-1101 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

Ansible Tower before version 3.2.4 has a flaw in the management of system and organization administrators that allows for privilege escalation. System administrators that are members of organizations can have their passwords reset by organization administrators, allowing organization administrators access to the entire system.

Learn more about our Web Application Penetration Testing UK.