Arbitrary Command Execution Vulnerability in Ansible's Pipe Lookup Plugin

Arbitrary Command Execution Vulnerability in Ansible's Pipe Lookup Plugin

CVE-2020-1734 · HIGH Severity

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:L

A flaw was found in the pipe lookup plugin of ansible. Arbitrary commands can be run, when the pipe lookup plugin uses subprocess.Popen() with shell=True, by overwriting ansible facts and the variable is not escaped by quote plugin. An attacker could take advantage and run arbitrary commands by overwriting the ansible facts.

Learn more about our Web Application Penetration Testing UK.