CVE-2020-14337 is a vulnerability in Red Hat Ansible Tower
Published on July 31, 2020

A data exposure flaw was found in Tower, where sensitive data was revealed from the HTTP return error codes. This flaw allows an unauthenticated, remote attacker to retrieve pages from the default organization and verify existing usernames. The highest threat from this vulnerability is to data confidentiality.

NVD

Weakness Type

Generation of Error Message Containing Sensitive Information

The software generates an error message that includes sensitive information about its environment, users, or associated data.

Products Associated with CVE-2020-14337

Want to know whenever a new CVE is published for Red Hat Ansible Tower? stack.watch will email you.

Red Hat Ansible Tower

Exploit Probability

EPSS

0.88%

Percentile

74.96%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-14337 is a vulnerability in Red Hat Ansible TowerPublished on July 31, 2020

Weakness Type

Generation of Error Message Containing Sensitive Information

Products Associated with CVE-2020-14337

Exploit Probability

CVE-2020-14337 is a vulnerability in Red Hat Ansible Tower
Published on July 31, 2020