---

CVE-2021-3583 - log back

CVE-2021-3583 edited at 06 Aug 2021 15:50:50
References	https://bugzilla.redhat.com/show_bug.cgi?id=1968412 + https://github.com/ansible/ansible/pull/74960 + https://github.com/ansible/ansible/commit/4c8c40fd3d4a58defdc80e7d22aa8d26b731353e

CVE-2021-3583 edited at 09 Jun 2021 08:02:28
Severity	- Unknown + Medium
Remote	- Unknown + Remote
Type	- Unknown + Arbitrary command execution
Description	+ A security issue was found in Ansible, where a user's controller is vulnerable to template injection. This issue can occur through facts used in the template if the user is trying to put templates in multi-line YAML strings and the facts being handled do not routinely include special template characters. This flaw allows attackers to perform command injection, which discloses sensitive information.
References	+ https://bugzilla.redhat.com/show_bug.cgi?id=1968412

CVE-2021-3583 created at 09 Jun 2021 08:00:35
Severity	+ Unknown
Remote	+ Unknown
Type	+ Unknown
Description
References
Notes