{"id":"CVE-2024-0690","details":"An information disclosure flaw was found in ansible-core due to a failure to respect the ANSIBLE_NO_LOG configuration in some scenarios. Information is still included in the output in certain tasks, such as loop items. Depending on the task, this issue may include sensitive information, such as decrypted secret values.","aliases":["GHSA-h24r-m9qc-pvpg","PYSEC-2024-36"],"modified":"2026-04-02T09:47:58.415414Z","published":"2024-02-06T12:15:55.530Z","related":["ALSA-2024:2246","ALSA-2024:3043","MGASA-2024-0239","SUSE-SU-2024:1427-1","SUSE-SU-2024:1509-1","openSUSE-SU-2024:13636-1","openSUSE-SU-2024:14251-1","openSUSE-SU-2024:14537-1","openSUSE-SU-2025:15638-1","openSUSE-SU-2025:15754-1"],"references":[{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IZQGCRDSZL7ONCULMB6ZUHOE4L44KIBP/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VDYSWOCPZMNRU5LWKIEBW4WGWLMTU7WQ/"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2024:0733"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2024:2246"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2024:3043"},{"type":"ADVISORY","url":"https://access.redhat.com/security/cve/CVE-2024-0690"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20250117-0001/"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2259013"},{"type":"FIX","url":"https://github.com/ansible/ansible/pull/82565"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/ansible/ansible","events":[{"introduced":"0"},{"fixed":"90ba582e3edcb0cd5b394bcfdcbd3ef383bc9cd3"},{"introduced":"748096552f96937f6e912e39b857f37b91563576"},{"fixed":"080b5103bef75c4a1d19d576ea8ebf49e149b48b"},{"introduced":"704ee70943c3e3ab7aeaa448f208a94220c02e6b"},{"fixed":"df6c5244ef0b5e484b83e6811e353ca61d9975ee"},{"introduced":"0"},{"last_affected":"2f944d87f694593cf1b8838b91bc9b87cad05068"},{"introduced":"0"},{"last_affected":"f67c13f8f10a6f8e0343a3c3d4e8ad7737ed28ab"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"2.14.4"},{"introduced":"2.15.0"},{"fixed":"2.15.9"},{"introduced":"2.16.0"},{"fixed":"2.16.3"},{"introduced":"0"},{"last_affected":"1.1"},{"introduced":"0"},{"last_affected":"1.2"}]}}],"versions":["0.0.1","0.0.2","0.01","0.3","0.3.1","0.4","0.4.1","0.5","0.6","0.7","0.7.1","0.7.2","0.8","v0.9","v1.0","v1.1","v2.15.0","v2.15.1","v2.15.1rc1","v2.15.2","v2.15.2rc1","v2.15.3","v2.15.3rc1","v2.15.4","v2.15.4rc1","v2.15.5","v2.15.5rc1","v2.15.6","v2.15.6rc1","v2.15.7","v2.15.7rc1","v2.15.8","v2.15.9rc1","v2.16.0","v2.16.1","v2.16.1rc1","v2.16.2","v2.16.3rc1"],"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"8.0"}]},{"events":[{"introduced":"0"},{"last_affected":"9.0"}]},{"events":[{"introduced":"0"},{"last_affected":"2.4"}]},{"events":[{"introduced":"0"},{"last_affected":"38"}]},{"events":[{"introduced":"0"},{"last_affected":"39"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-0690.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}]}