CVE-2021-3620 vulnerability in Red Hat Products
Published on March 3, 2022

A flaw was found in Ansible Engine's ansible-connection module, where sensitive information such as the Ansible user credentials is disclosed by default in the traceback error message. The highest threat from this vulnerability is to confidentiality.

NVD

Weakness Type

Generation of Error Message Containing Sensitive Information

The software generates an error message that includes sensitive information about its environment, users, or associated data.

Products Associated with CVE-2021-3620

Want to know whenever a new CVE is published for Red Hat products? stack.watch will email you.

Red Hat Ansible Automation Platform Early Access

Red Hat Ansible Engine

Red Hat Openstack

Red Hat Virtualization

Red Hat Virtualization Ibm Power Little Endian

Red Hat Virtualization Host

Red Hat Virtualization Manager

Red Hat Enterprise Linux (RHEL)

Red Hat Enterprise Linux Power Little Endian

Exploit Probability

EPSS

0.17%

Percentile

38.19%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-3620 vulnerability in Red Hat ProductsPublished on March 3, 2022

Weakness Type

Generation of Error Message Containing Sensitive Information

Products Associated with CVE-2021-3620

Exploit Probability

CVE-2021-3620 vulnerability in Red Hat Products
Published on March 3, 2022