Dalrrard

**Name of the Vulnerable Software and Affected Versions** Ansible Engine versions prior to 2.8.15 **Description** A flaw was found in Ansible Engine's ansible-connection module, where sensitive information such as the Ansible user credentials is disclosed by default in the traceback error message. The highest threat from this vulnerability is to confidentiality. **Recommendations** For versions prior to 2.8.15, update to a version that contains a fix for this issue, such as version 2.8.16 or later, to prevent sensitive information disclosure. As a temporary workaround, consider disabling the `ansible-connection` module until a patch is available. Restrict access to the `set options` function to minimize the risk of exploitation. Avoid using the `set options` function in the affected `ansible-connection` module until the issue is resolved.