Incorrect Access Control in Confluent Ansible (cp-ansible) 5.5.0-5.5.2 and 6.0.0

CVE-2021-33924 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Confluent Ansible (cp-ansible) version 5.5.0, 5.5.1, 5.5.2 and 6.0.0 is vulnerable to Incorrect Access Control via its auxiliary component that allows remote attackers to access sensitive information.

Learn more about our Web Application Penetration Testing UK.