CVE-2023-4237 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2023-4237 Interim 1 7 2025-02-16T02:30:55Z current 2023-08-09T23:16:29Z 2025-02-16T02:30:55Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2023-4237 A flaw was found in the Ansible Automation Platform. When creating a new keypair, the ec2_key module prints out the private key directly to the standard output. This flaw allows an attacker to fetch those keys from the log files, compromising the system's confidentiality, integrity, and availability. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings HPE Helion OpenStack 8 SUSE Manager Client Tools for SLE 15 SUSE Manager Proxy Module 4.2 SUSE Manager Proxy Module 4.3 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 ansible ansible-doc ansible1 ansible as a component of HPE Helion OpenStack 8 ansible1 as a component of HPE Helion OpenStack 8 ansible as a component of SUSE Manager Client Tools for SLE 15 ansible as a component of SUSE Manager Proxy Module 4.2 ansible-doc as a component of SUSE Manager Proxy Module 4.2 ansible as a component of SUSE Manager Proxy Module 4.3 ansible-doc as a component of SUSE Manager Proxy Module 4.3 ansible as a component of SUSE OpenStack Cloud 8 ansible1 as a component of SUSE OpenStack Cloud 8 ansible1 as a component of SUSE OpenStack Cloud 9 ansible as a component of SUSE OpenStack Cloud Crowbar 8 A flaw was found in the Ansible Automation Platform. When creating a new keypair, the ec2_key module prints out the private key directly to the standard output. This flaw allows an attacker to fetch those keys from the log files, compromising the system's confidentiality, integrity, and availability. CVE-2023-4237 SUSE Manager Client Tools for SLE 15:ansible SUSE Manager Proxy Module 4.2:ansible SUSE Manager Proxy Module 4.2:ansible-doc SUSE Manager Proxy Module 4.3:ansible SUSE Manager Proxy Module 4.3:ansible-doc HPE Helion OpenStack 8:ansible HPE Helion OpenStack 8:ansible1 SUSE OpenStack Cloud 8:ansible SUSE OpenStack Cloud 8:ansible1 SUSE OpenStack Cloud 9:ansible1 SUSE OpenStack Cloud Crowbar 8:ansible moderate 6.5 CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H