CVE-2022-3644 - Redhat Ansible Automation Platform, Redhat Update Infrastructure and Pulpproject Pulp Ansible

Moderate 5.5

The collection remote for pulp_ansible stores tokens in plaintext instead of using pulp's encrypted field and exposes them in read/write mode via the API () instead of marking it as write only.

Affected software

Redhat Ansible Automation Platform

Redhat Update Infrastructure

Pulpproject Pulp Ansible

Redhat Satellite

Reference links

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.