A flaw was found in ansible module where credentials are disclosed in the console log by default and not protected by the security feature when using the bitbucket_pipeline_variable module. This flaw allows an attacker to steal bitbucket_pipeline credentials. The highest threat from this vulnerability is to confidentiality.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2021-05-26T00:00:00

Updated: 2024-08-03T17:30:07.440Z

Reserved: 2020-12-17T00:00:00

Link: CVE-2021-20178

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-05-26T12:15:18.897

Modified: 2024-11-21T05:46:04.550

Link: CVE-2021-20178

cve-icon Redhat

Severity : Moderate

Publid Date: 2021-01-11T00:00:00Z

Links: CVE-2021-20178 - Bugzilla