{"id":"CVE-2022-3644","details":"The collection remote for pulp_ansible stores tokens in plaintext instead of using pulp's encrypted field and exposes them in read/write mode via the API () instead of marking it as write only.","aliases":["GHSA-qv37-mfjf-42h8"],"modified":"2026-05-04T08:35:48.333648Z","published":"2022-10-25T18:15:10.020Z","withdrawn":"2026-05-04T08:35:48.333648Z","references":[{"type":"EVIDENCE","url":"https://github.com/pulp/pulp_ansible/blob/main/pulp_ansible/app/models.py#L234"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"2.0"}]},{"events":[{"introduced":"0"},{"last_affected":"6.0"}]},{"events":[{"introduced":"0"},{"last_affected":"3.0"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-3644.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}]}