VDB
CVE-2021-3620
CVE-2021-3620
PUBLISHED
Es existiert eine Schwachstelle in Ansible. Der Fehler besteht im "ansible-connection module" aufgrund der fehlerhaften Generierung einer Traceback-Fehlermeldung. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen.
EPSS 0.29% · 52.8th percentile
Risk Scores
EPSS Score
0.29%
52.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian | Debian Linux | |
| Red Hat | Red Hat Enterprise Linux | |
| Open Source | Open Source Ansible | |
| SUSE | SUSE Linux |
Timeline
- Jun 24, 2021 CVE Published
- Mar 4, 2022 EPSS Score
- Apr 25, 2022 EPSS Score
- Jun 15, 2022 EPSS Score
- Aug 7, 2022 EPSS Score
- Sep 27, 2022 EPSS Score
- Nov 18, 2022 EPSS Score
- Jan 9, 2023 EPSS Score
- Mar 1, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 22, 2023 EPSS Score
- Jun 13, 2023 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2021/wid-sec-w-2022-1356.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1356 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1975767 advisory
- https://access.redhat.com/security/cve/CVE-2021-3620 advisory
- https://access.redhat.com/errata/RHSA-2021:3872 advisory
- https://access.redhat.com/errata/RHSA-2021:3874 advisory
- https://access.redhat.com/errata/RHSA-2021:3871 advisory
- https://access.redhat.com/errata/RHSA-2021:4582 advisory
- https://access.redhat.com/errata/RHSA-2021:4703 advisory
- https://access.redhat.com/errata/RHSA-2021:4750 advisory
- https://access.redhat.com/errata/RHSA-2021:4848 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2021-December/009930.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-September/012182.html advisory
- https://lists.debian.org/debian-lts-announce/2023/12/msg00018.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2024-January/017743.html advisory