Is Ansible 3.4.0 patched?
Current stable (14.0.0): 100/100
3.4.0 has 1 open critical-or-high vulnerability. Run 5.1.0 or later to clear it. See what 5.1.0 fixes →
Summary iPlain-English security status for Ansible 3.4.0, built from its CVEs, active-exploitation data, end-of-life date and latest release.
Ansible 3.4.0 is part of the 3.4 release line. 9 known vulnerabilities affect it. The minimum safe version is 5.1.0 — upgrade to it or later to clear the open critical/high issues. The latest supported Ansible release is 14.0.0.
Known issues affecting 3.4.0
Exploited first, then by exploitation probability.
CVE-2022-3697 HIGH EPSS 1% → fixed in 5.1.0 CVE-2020-1735 MEDIUM EPSS 0% → fixed in 2.9.7 CVE-2020-1736 LOW EPSS 0% → fixed in 2.9.13 CVE-2020-1733 MEDIUM EPSS 0% → fixed in 2.8.8 CVE-2020-1738 LOW EPSS 0% → see advisory CVE-2020-1740 LOW EPSS 0% → fixed in 2.9.7 CVE-2020-1739 LOW EPSS 0% → see advisory CVE-2021-3447 MEDIUM EPSS 0% → fixed in 3.8.2 CVE-2020-10744 MEDIUM EPSS 0% → see advisoryOther Ansible versions
Check another release line of Ansible.
Frequently asked
Is Ansible 3.4.0 patched?
Ansible 3.4.0 has 1 open critical-or-high vulnerability. The minimum safe version is 5.1.0 — upgrade to 5.1.0 or later to clear it.
What version should I upgrade Ansible 3.4.0 to?
Upgrade Ansible 3.4.0 to at least 5.1.0 to clear its 1 open critical-or-high vulnerability.
What is the latest version of Ansible?
The latest supported Ansible release is 14.0.0.
Is Ansible 3.4.0 still receiving security updates?
Yes — the 3.4 line is still supported and receiving security updates. The latest release is 14.0.0.
Informational only, from public data (NVD · CISA KEV · EPSS · endoflife.date), and can lag or miss vendor-specific fixes. Always confirm against Red Hat's official advisory before you patch or upgrade — Ansible official site ↗