{"id":"CVE-2017-7550","details":"A flaw was found in the way Ansible (2.3.x before 2.3.3, and 2.4.x before 2.4.1) passed certain parameters to the jenkins_plugin module. Remote attackers could use this flaw to expose sensitive information from a remote host's logs. This flaw was fixed by not allowing passwords to be specified in the \"params\" argument, and noting this in the module documentation.","aliases":["GHSA-588w-w6mv-3cw5","PYSEC-2017-4"],"modified":"2026-04-16T06:18:58.359334395Z","published":"2017-11-21T17:29:00.210Z","related":["SUSE-SU-2018:0605-1","SUSE-SU-2020:3309-1","SUSE-SU-2024:1427-1","SUSE-SU-2024:1509-1","openSUSE-SU-2017:2976-1","openSUSE-SU-2017:2978-1","openSUSE-SU-2024:10615-1","openSUSE-SU-2024:14244-1","openSUSE-SU-2024:14536-1","openSUSE-SU-2025:15605-1","openSUSE-SU-2025:15753-1"],"references":[{"type":"REPORT","url":"https://access.redhat.com/errata/RHSA-2017:2966"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1473645"},{"type":"REPORT","url":"https://github.com/ansible/ansible/issues/30874"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/ansible/ansible","events":[{"introduced":"d56ba0945dbf6c787a3e7f3e17b3db657b9dcee4"},{"fixed":"0255ab2e27d1268faa409bff855682f2992f0f85"},{"introduced":"d14467b0294296b9a2b85e0ad150315c2d5a2491"},{"fixed":"e946c4b3b73be28871ab67965584e060d7da1c4b"}],"database_specific":{"versions":[{"introduced":"2.3.0"},{"fixed":"2.3.3"},{"introduced":"2.4.0"},{"fixed":"2.4.1"}]}}],"versions":["v2.3.0.0-1","v2.3.1.0-0.1.rc1","v2.3.1.0-0.2.rc2","v2.3.1.0-1","v2.3.2.0-0.1.rc1","v2.3.2.0-0.2.rc2","v2.3.2.0-0.3.rc3","v2.3.2.0-0.4.rc4","v2.3.2.0-0.5.rc5","v2.3.2.0-1","v2.3.3.0-0.1.rc1","v2.3.3.0-0.2.rc2","v2.3.3.0-0.3.rc3","v2.4.0.0-1","v2.4.1.0-0.1.beta1","v2.4.1.0-0.2.beta2","v2.4.1.0-0.3.rc1","v2.4.1.0-0.4.rc2"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-7550.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"7.0"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}