For a Server-Side Request Forgery (SSRF) attack, the attacker can abuse functionality on the server to read or update internal resources. The attacker can supply or a modify a URL which the code running on the server will read or submit data to, and by carefully selecting the URLs, the attacker may be able to connect to internal services like http enabled databases or perform post requests towards internal services which are not intended to be exposed.
As an organization administrator, is it possible to manage webhooks (HTTP, mail, etc...). This feature could be returning the full details in case of error such as HTML source in case of HTTP/HTTPS, Server unavailable, Port status, etc. The main concern is too limit the informations given by this feature.
Ansible Tower 3.7.1 as well as previous versions are affected.
Name: Maxime ESCOURBIAC (Michelin CERT team)
This issue has been addressed in the following products:
Red Hat Ansible Tower 3.7 for RHEL 7
Via RHSA-2020:3328 https://access.redhat.com/errata/RHSA-2020:3328
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):