{"id":"CVE-2020-1739","details":"A flaw was found in Ansible 2.7.16 and prior, 2.8.8 and prior, and 2.9.5 and prior when a password is set with the argument \"password\" of svn module, it is used on svn command line, disclosing to other users within the same node. An attacker could take advantage by reading the cmdline file from that particular PID on the procfs.","aliases":["GHSA-923p-fr2c-g5m2","PYSEC-2020-11"],"modified":"2026-04-02T04:10:14.482290Z","published":"2020-03-12T18:15:12.337Z","related":["MGASA-2020-0217","SUSE-SU-2020:3309-1","openSUSE-SU-2022:0081-1","openSUSE-SU-2024:10615-1","openSUSE-SU-2024:14244-1","openSUSE-SU-2024:14536-1","openSUSE-SU-2025:15605-1","openSUSE-SU-2025:15753-1"],"references":[{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FWDK3QUVBULS3Q3PQTGEKUQYPSNOU5M3/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QT27K5ZRGDPCH7GT3DRI3LO4IVDVQUB7/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U3IMV3XEIUXL6S4KPLYYM4TVJQ2VNEP2/"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2020/05/msg00005.html"},{"type":"ADVISORY","url":"https://www.debian.org/security/2021/dsa-4950"},{"type":"REPORT","url":"https://github.com/ansible/ansible/issues/67797"},{"type":"FIX","url":"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1739"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/ansible/ansible","events":[{"introduced":"0"},{"last_affected":"8fd406ee8e3a14be72b3cbbfe91d03fe35952f95"},{"introduced":"2611867fd1dc387ceaa0ffb8ce0f030aafc2a859"},{"last_affected":"d28e4b63c7b70acbaf0a1fedd53c91b6686574a0"},{"introduced":"24325a05dfb9104d6d4ec8b488b89e07c2e6d376"},{"last_affected":"9388be4269bdf83406bfa9245142de8b7dc8cfbc"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"2.7.16"},{"introduced":"2.8.0"},{"last_affected":"2.8.8"},{"introduced":"2.9.0"},{"last_affected":"2.9.5"}]}}],"versions":["0.0.1","0.0.2","0.01","0.3","0.3.1","0.4","0.4.1","0.5","0.6","0.7","0.7.1","0.7.2","0.8","pre-ansible-base","stable-2.10-branchpoint","stable-2.11-branchpoint","stable-2.9-branchpoint","v0.9","v1.0","v1.1","v1.2","v1.2.1","v1.2.2","v1.2.3","v1.3.0","v1.3.1","v1.3.2","v1.3.3","v1.3.4","v1.4.0","v1.4.1","v1.4.2","v1.4.3","v1.4.4","v1.4.5","v1.5.0","v1.5.1","v1.5.2","v1.5.3","v1.5.4","v1.5.5","v1.6.0","v1.6.1","v1.6.10","v1.6.2","v1.6.3","v1.6.4","v1.6.5","v1.6.6","v1.6.7","v1.6.8","v1.6.9","v1.7.0","v1.7.1","v1.7.2","v1.8.0","v1.8.1","v1.8.2","v1.8.3","v1.8.4","v1.9.0-0.1.rc1","v1.9.0-0.2.rc2","v1.9.0-1","v1.9.0-2","v1.9.0.1-1","v1.9.1-0.1.rc1","v1.9.1-0.2.rc2","v1.9.1-0.3.rc3","v1.9.1-0.4.rc4","v1.9.1-1","v1.9.2-0.1.rc1","v1.9.2-0.2.rc2","v1.9.2-1","v1.9.3-0.1.rc1","v1.9.3-0.2.rc2","v1.9.3-0.3.rc3","v1.9.3-1","v1.9.4-0.1.rc1","v1.9.4-0.2.rc2","v1.9.4-0.3.rc3","v1.9.4-1","v1.9.5-0.1.rc1","v1.9.5-1","v1.9.6-0.1.rc1","v1.9.6-1","v1_last","v2.0.0-0.1.alpha1","v2.0.0-0.2.alpha2","v2.0.0-0.3.beta1","v2.0.0-0.4.beta2","v2.0.0-0.5.beta3","v2.0.0-0.6.rc1","v2.0.0-0.7.rc2","v2.0.0-0.8.rc3","v2.0.0-0.9.rc4","v2.0.0.0-1","v2.0.0.1-1","v2.0.0.2-1","v2.0.1.0-0.1.rc1","v2.0.1.0-0.2.rc2","v2.0.1.0-1","v2.0.2.0-0.1.rc1","v2.0.2.0-0.2.rc2","v2.0.2.0-0.3.rc3","v2.0.2.0-0.4.rc4","v2.0.2.0-1","v2.1.0.0-0.1.rc1","v2.1.0.0-0.2.rc2","v2.1.0.0-0.3.rc3","v2.1.0.0-0.4.rc4","v2.1.0.0-1","v2.1.1.0-0.1.rc1","v2.1.1.0-0.2.rc2","v2.1.1.0-0.3.rc3","v2.1.1.0-0.4.rc4","v2.1.1.0-0.5.rc5","v2.1.1.0-1","v2.1.2.0-0.1.rc1","v2.1.2.0-0.2.rc2","v2.1.2.0-0.3.rc3","v2.1.2.0-0.4.rc4","v2.1.2.0-0.5.rc5","v2.1.2.0-1","v2.1.3.0-0.1.rc1","v2.1.3.0-0.2.rc2","v2.1.3.0-0.3.rc3","v2.1.3.0-1","v2.1.4.0-0.1.rc1","v2.1.4.0-0.2.rc2","v2.1.4.0-0.3.rc3","v2.1.4.0-1","v2.1.5.0-0.1.rc1","v2.1.5.0-0.2.rc2","v2.1.5.0-1","v2.1.6.0-0.1.rc1","v2.1.6.0-1","v2.10.0","v2.10.0b1","v2.10.0rc1","v2.10.0rc2","v2.10.0rc3","v2.10.0rc4","v2.10.1","v2.10.10","v2.10.10rc1","v2.10.11","v2.10.11rc1","v2.10.12","v2.10.12rc1","v2.10.13","v2.10.13rc1","v2.10.14","v2.10.14rc1","v2.10.15","v2.10.15rc1","v2.10.16","v2.10.16rc1","v2.10.17","v2.10.17rc1","v2.10.1rc2","v2.10.1rc3","v2.10.2","v2.10.2rc1","v2.10.3","v2.10.3rc1","v2.10.4","v2.10.4rc1","v2.10.5","v2.10.5rc1","v2.10.6","v2.10.6rc1","v2.10.7","v2.10.7rc1","v2.10.8","v2.10.8rc1","v2.10.9","v2.10.9rc1","v2.11.0","v2.11.0b1","v2.11.0b2","v2.11.0b3","v2.11.0b4","v2.11.0rc1","v2.11.0rc2","v2.11.1","v2.11.10","v2.11.10rc1","v2.11.11","v2.11.11rc1","v2.11.12","v2.11.12rc1","v2.11.1rc1","v2.11.2","v2.11.2rc1","v2.11.3","v2.11.3rc1","v2.11.4","v2.11.4rc1","v2.11.5","v2.11.5rc1","v2.11.6","v2.11.6rc1","v2.11.7","v2.11.7rc1","v2.11.8","v2.11.8rc1","v2.11.9","v2.11.9rc1","v2.12.0","v2.12.0b1","v2.12.0b2","v2.12.0rc1","v2.12.1","v2.12.10","v2.12.10rc1","v2.12.1rc1","v2.12.2","v2.12.2rc1","v2.12.3","v2.12.3rc1","v2.12.4","v2.12.4rc1","v2.12.5","v2.12.5rc1","v2.12.6","v2.12.6rc1","v2.12.7","v2.12.7rc1","v2.12.8","v2.12.8rc1","v2.12.9","v2.12.9rc1","v2.13.0","v2.13.0b0","v2.13.0b1","v2.13.0rc1","v2.13.1","v2.13.10","v2.13.10rc1","v2.13.11","v2.13.11rc1","v2.13.12","v2.13.12rc1","v2.13.13","v2.13.13rc1","v2.13.1rc1","v2.13.2","v2.13.2rc1","v2.13.3","v2.13.3rc1","v2.13.4","v2.13.4rc1","v2.13.5","v2.13.5rc1","v2.13.6","v2.13.6rc1","v2.13.7","v2.13.7rc1","v2.13.8","v2.13.8rc1","v2.13.9","v2.13.9rc1","v2.14.0","v2.14.0b1","v2.14.0b2","v2.14.0b3","v2.14.0rc1","v2.14.0rc2","v2.14.1","v2.14.10","v2.14.10rc1","v2.14.11","v2.14.11rc1","v2.14.12","v2.14.12rc1","v2.14.13","v2.14.14","v2.14.14rc1","v2.14.15","v2.14.15rc1","v2.14.16","v2.14.16rc1","v2.14.17","v2.14.17rc1","v2.14.18","v2.14.18rc1","v2.14.1rc1","v2.14.2","v2.14.2rc1","v2.14.3","v2.14.3rc1","v2.14.4","v2.14.4rc1","v2.14.5","v2.14.5rc1","v2.14.6","v2.14.6rc1","v2.14.7","v2.14.7rc1","v2.14.8","v2.14.8rc1","v2.14.9","v2.14.9rc1","v2.15.0","v2.15.0b1","v2.15.0b2","v2.15.0b3","v2.15.0rc1","v2.15.0rc2","v2.15.1","v2.15.10","v2.15.10rc1","v2.15.11","v2.15.11rc1","v2.15.12","v2.15.12rc1","v2.15.13","v2.15.13rc1","v2.15.1rc1","v2.15.2","v2.15.2rc1","v2.15.3","v2.15.3rc1","v2.15.4","v2.15.4rc1","v2.15.5","v2.15.5rc1","v2.15.6","v2.15.6rc1","v2.15.7","v2.15.7rc1","v2.15.8","v2.15.9","v2.15.9rc1","v2.16.0","v2.16.0b1","v2.16.0b2","v2.16.0rc1","v2.16.1","v2.16.10","v2.16.10rc1","v2.16.11","v2.16.11rc1","v2.16.12","v2.16.12rc1","v2.16.13","v2.16.13rc1","v2.16.14","v2.16.14rc1","v2.16.15","v2.16.15rc1","v2.16.16","v2.16.16rc1","v2.16.17","v2.16.17rc1","v2.16.18","v2.16.18rc1","v2.16.1rc1","v2.16.2","v2.16.3","v2.16.3rc1","v2.16.4","v2.16.4rc1","v2.16.5","v2.16.5rc1","v2.16.6","v2.16.7","v2.16.7rc1","v2.16.8","v2.16.8rc1","v2.16.9","v2.16.9rc1","v2.17.0","v2.17.0b1","v2.17.0rc1","v2.17.0rc2","v2.17.1","v2.17.10","v2.17.10rc1","v2.17.11","v2.17.11rc1","v2.17.12","v2.17.12rc1","v2.17.13","v2.17.13rc1","v2.17.14","v2.17.14rc1","v2.17.1rc1","v2.17.2","v2.17.2rc1","v2.17.2rc2","v2.17.3","v2.17.3rc1","v2.17.4","v2.17.4rc1","v2.17.5","v2.17.5rc1","v2.17.6","v2.17.6rc1","v2.17.7","v2.17.7rc1","v2.17.8","v2.17.8rc1","v2.17.9","v2.17.9rc1","v2.18.0","v2.18.0b1","v2.18.0rc1","v2.18.0rc2","v2.18.1","v2.18.10","v2.18.10rc1","v2.18.11","v2.18.11rc1","v2.18.12","v2.18.12rc1","v2.18.13","v2.18.13rc1","v2.18.14","v2.18.14rc1","v2.18.15","v2.18.15rc1","v2.18.1rc1","v2.18.2","v2.18.2rc1","v2.18.3","v2.18.3rc1","v2.18.4","v2.18.4rc1","v2.18.5","v2.18.5rc1","v2.18.6","v2.18.6rc1","v2.18.7","v2.18.7rc1","v2.18.8","v2.18.8rc1","v2.18.9","v2.18.9rc1","v2.19.0","v2.19.0b1","v2.19.0b2","v2.19.0b3","v2.19.0b4","v2.19.0b5","v2.19.0b6","v2.19.0b7","v2.19.0rc1","v2.19.0rc2","v2.19.1","v2.19.1rc1","v2.19.2","v2.19.2rc1","v2.19.3","v2.19.3rc1","v2.19.4","v2.19.4rc1","v2.19.5","v2.19.5rc1","v2.19.6","v2.19.6rc1","v2.19.7","v2.19.7rc1","v2.19.8","v2.19.8rc1","v2.2.0.0-0.1.rc1","v2.2.0.0-0.2.rc2","v2.2.0.0-0.3.rc3","v2.2.0.0-0.4.rc4","v2.2.0.0-1","v2.2.1.0-0.1.rc1","v2.2.1.0-0.2.rc2","v2.2.1.0-0.3.rc3","v2.2.1.0-0.4.rc4","v2.2.1.0-0.5.rc5","v2.2.1.0-1","v2.2.2.0-0.1.rc1","v2.2.2.0-0.2.rc2","v2.2.2.0-1","v2.2.3.0-0.1.rc1","v2.2.3.0-1","v2.20.0","v2.20.0b1","v2.20.0b2","v2.20.0rc1","v2.20.0rc2","v2.20.0rc3","v2.20.1","v2.20.1rc1","v2.20.2","v2.20.2rc1","v2.20.3","v2.20.3rc1","v2.20.4","v2.20.4rc1","v2.3.0.0-0.1.rc1","v2.3.0.0-0.2.rc2","v2.3.0.0-0.3.rc3","v2.3.0.0-0.4.rc4","v2.3.0.0-0.5.rc5","v2.3.0.0-0.6.rc6","v2.3.0.0-1","v2.3.1.0-0.1.rc1","v2.3.1.0-0.2.rc2","v2.3.1.0-1","v2.3.2.0-0.1.rc1","v2.3.2.0-0.2.rc2","v2.3.2.0-0.3.rc3","v2.3.2.0-0.4.rc4","v2.3.2.0-0.5.rc5","v2.3.2.0-1","v2.3.3.0-0.1.rc1","v2.3.3.0-0.2.rc2","v2.3.3.0-0.3.rc3","v2.3.3.0-1","v2.3.4.0-0.1.rc1","v2.4.0.0-0.1.rc1","v2.4.0.0-0.2.rc2","v2.4.0.0-0.3.rc3","v2.4.0.0-0.4.rc4","v2.4.0.0-0.5.rc5","v2.4.0.0-1","v2.4.1.0-0.1.beta1","v2.4.1.0-0.2.beta2","v2.4.1.0-0.3.rc1","v2.4.1.0-0.4.rc2","v2.4.1.0-1","v2.4.2.0-0.1.beta1","v2.4.2.0-0.2.beta2","v2.4.2.0-0.3.beta3","v2.4.2.0-0.4.beta4","v2.4.2.0-0.5.rc1","v2.4.2.0-1","v2.4.3-0.3.beta3","v2.4.3.0-0.1.beta1","v2.4.3.0-0.2.beta2","v2.4.3.0-0.4.rc1","v2.4.3.0-0.5.rc2","v2.4.3.0-0.6.rc3","v2.4.3.0-1","v2.4.4-0.1.beta1","v2.4.4-0.2.rc1","v2.4.4.0-0.3.rc2","v2.4.4.0-1","v2.4.5.0-0.1.rc1","v2.4.5.0-1","v2.4.6.0-1","v2.5.0","v2.5.0a1","v2.5.0b1","v2.5.0b2","v2.5.0rc1","v2.5.0rc2","v2.5.0rc3","v2.5.1","v2.5.10","v2.5.11","v2.5.12","v2.5.13","v2.5.14","v2.5.15","v2.5.2","v2.5.3","v2.5.4","v2.5.5","v2.5.6","v2.5.7","v2.5.8","v2.5.9","v2.6.0","v2.6.0a1","v2.6.0a2","v2.6.0rc1","v2.6.0rc2","v2.6.0rc3","v2.6.0rc4","v2.6.0rc5","v2.6.1","v2.6.10","v2.6.11","v2.6.12","v2.6.13","v2.6.14","v2.6.15","v2.6.16","v2.6.17","v2.6.18","v2.6.19","v2.6.2","v2.6.20","v2.6.3","v2.6.4","v2.6.5","v2.6.6","v2.6.7","v2.6.8","v2.6.9","v2.7.0","v2.7.0.a1","v2.7.0b1","v2.7.0rc1","v2.7.0rc2","v2.7.0rc3","v2.7.0rc4","v2.7.1","v2.7.10","v2.7.11","v2.7.12","v2.7.13","v2.7.14","v2.7.15","v2.7.16","v2.7.2","v2.7.3","v2.7.4","v2.7.5","v2.7.6","v2.7.7","v2.7.8","v2.7.9","v2.8.0","v2.8.0a1","v2.8.0b1","v2.8.0rc1","v2.8.0rc2","v2.8.0rc3","v2.8.1","v2.8.2","v2.8.3","v2.8.4","v2.8.5","v2.8.6","v2.8.7","v2.8.8","v2.9.0","v2.9.0b1","v2.9.0rc1","v2.9.0rc2","v2.9.0rc3","v2.9.0rc4","v2.9.0rc5","v2.9.1","v2.9.2","v2.9.3","v2.9.4","v2.9.5"],"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"3.3.4"}]},{"events":[{"introduced":"3.4.0"},{"last_affected":"3.4.5"}]},{"events":[{"introduced":"3.5.0"},{"last_affected":"3.5.5"}]},{"events":[{"introduced":"3.6.0"},{"last_affected":"3.6.3"}]},{"events":[{"introduced":"0"},{"last_affected":"5.0"}]},{"events":[{"introduced":"0"},{"last_affected":"13"}]},{"events":[{"introduced":"0"},{"last_affected":"30"}]},{"events":[{"introduced":"0"},{"last_affected":"31"}]},{"events":[{"introduced":"0"},{"last_affected":"32"}]},{"events":[{"introduced":"0"},{"last_affected":"8.0"}]},{"events":[{"introduced":"0"},{"last_affected":"10.0"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-1739.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N"}]}