Threats Tagged 'cve-2024-11079'
View all threats tagged with 'cve-2024-11079'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2024-11079'
Click on any threat for detailed analysis and mitigation recommendations
Red Hat Security Advisory: Red Hat Ansible Automation Platform Execution Environments Container Release UpdateCVE-2024-11079 0 A moderate severity vulnerability (CVE-2024-11079) affects Red Hat Ansible Automation Platform Execution Environments. The issue involves an unsafe tagging bypass via the hostvars object in ansible-core, which could impact how automation tasks are executed. Red Hat has released updated versions of ansible-core across multiple streams (2. 15. 13, 2. 16. 14, 2. 17. 7, and 2. 18. Join the discussion | GCVE Database | 12/03/2024, 22:38:04 UTC Added: 06/02/2026, 21:43:41 UTC |
Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Product Security and Bug Fix UpdateCVE-2024-11079 0 Red Hat Ansible Automation Platform 2. 5 has been updated to address multiple security issues, including an unsafe tagging bypass via the hostvars object in ansible-core (CVE-2024-11079) and improper scope handling in OAuth2 tokens in the automation gateway (CVE-2024-11483). These vulnerabilities have been rated with moderate severity by Red Hat Product Security. The update also includes numerous bug fixes and improvements across the platform's UI, Event-Driven Ansible components, and container-based deployments. The advisory confirms that a security update is available to remediate these issues. Join the discussion | GCVE Database | 12/16/2024, 18:56:50 UTC Added: 06/02/2026, 21:43:39 UTC |
CVE-2024-11079: Improper Input ValidationCVE-2024-11079 0 A flaw was found in Ansible-Core. This vulnerability allows attackers to bypass unsafe content protections using the hostvars object to reference and execute templated content. This issue can lead to arbitrary code execution if remote data or module outputs are improperly templated within playbooks. Join the discussion | CVE Database V5 | 11/11/2024, 23:32:55 UTC Added: 11/20/2025, 18:33:15 UTC |
Showing 1 to 3 of 3 results