VYPR
High severity7.5NVD Advisory· Published Apr 29, 2021· Updated Jun 17, 2026

CVE-2021-20228

CVE-2021-20228

Description

A flaw was found in the Ansible Engine 2.9.18, where sensitive info is not masked by default and is not protected by the no_log feature when using the sub-option feature of the basic.py module. This flaw allows an attacker to obtain sensitive information. The highest threat from this vulnerability is to confidentiality.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
ansiblePyPI
>= 2.10.0a1, < 2.10.6rc12.10.6rc1
ansiblePyPI
>= 2.9.0a1, < 2.9.18rc12.9.18rc1
ansiblePyPI
< 2.8.19rc12.8.19rc1

Affected products

79

Patches

Vulnerability mechanics

References

12

News mentions

0

No linked articles in our index yet.