{"id":"CVE-2014-3498","details":"The user module in ansible before 1.6.6 allows remote authenticated users to execute arbitrary commands.","aliases":["GHSA-4cvm-5776-jx9f","PYSEC-2017-2"],"modified":"2025-08-09T19:01:27Z","published":"2017-06-08T18:29:00Z","references":[{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1335551"},{"type":"FIX","url":"https://github.com/ansible/ansible/commit/8ed6350e65c82292a631f08845dfaacffe7f07f5"}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}