Job Isolation Escape Vulnerability in Ansible Tower

Job Isolation Escape Vulnerability in Ansible Tower

CVE-2021-4112 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

A flaw was found in ansible-tower where the default installation is vulnerable to job isolation escape. This flaw allows an attacker to elevate the privilege from a low privileged user to an AWX user from outside the isolated environment.

Learn more about our User Device Pen Test.