CVE-2018-10874

In ansible it was found that inventory variables are loaded from current working directory when running ad-hoc command which are under attacker's control, allowing to run arbitrary code as a result. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt