CVE-2013-4259

LOW

—CVSS v3

1.9CVSS v2

0.05% EPSS (exploit probability)

CWE-264CWE

Description

runner/connection_plugins/ssh.py in Ansible before 1.2.3, when using ControlPersist, allows local users to redirect a ssh session via a symlink attack on a socket file with a predictable name in /tmp/.

Affected routers (0)

No routers currently mapped to this CVE in our database.

External references

NIST NVD
MITRE CVE