PT-2021-7624 · Ansible+5 · Ansible+5

Tapas Jena

·

Published

2021-06-07

·

Updated

2026-06-03

·

CVE-2021-3583

CVSS v4.0

8.6

High

VectorAV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
Name of the Vulnerable Software and Affected Versions Ansible (affected versions not specified)
Description A flaw was found in Ansible, where a user's controller is vulnerable to template injection. This issue can occur through facts used in the template if the user is trying to put templates in multi-line YAML strings and the facts being handled do not routinely include special template characters. This flaw allows attackers to perform command injection, which discloses sensitive information. The highest threat from this vulnerability is to confidentiality and integrity.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Command Injection

Code Injection

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-77CWE-94CWE-20

Related Identifiers

ALT-PU-2021-2040
ALT-PU-2021-2052
ALT-PU-2021-2979
AZL-6305
BDU:2023-00285
CVE-2021-3583
DLA-3695-1
DLA-3695-2
GHSA-2PFH-Q76X-GWVM
MGASA-2021-0420
OESA-2025-1647
OPENSUSE-SU-2022_3178-1
OPENSUSE-SU-2024:10615-1
OPENSUSE-SU-2024:14244-1
OPENSUSE-SU-2024:14536-1
OPENSUSE-SU-2025:15605-1
OPENSUSE-SU-2025:15753-1
OPENSUSE-SU-2026:10944-1
PYSEC-2021-358
RHSA-2021:2663
RHSA-2021:2664
SUSE-SU-2021:4152-1
SUSE-SU-2022:3178-1
SUSE-SU-2024:0196-1
USN-5315-1

Affected Products

Alt Linux
Ansible
Astra Linux
Linuxmint
Suse
Ubuntu