CVE-2021-20178 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2021-20178 Interim 1 50 2026-03-05T05:28:53Z current 2021-05-30T14:47:02Z 2026-03-05T05:28:53Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2021-20178 A flaw was found in ansible module where credentials are disclosed in the console log by default and not protected by the security feature when using the bitbucket_pipeline_variable module. This flaw allows an attacker to steal bitbucket_pipeline credentials. The highest threat from this vulnerability is to confidentiality. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.suse.com/pipermail/sle-security-updates/2022-September/012196.html E-Mail link for SUSE-CU-2022:2149-1 https://lists.suse.com/pipermail/sle-security-updates/2021-June/009066.html E-Mail link for SUSE-SU-2021:2121-1 https://lists.suse.com/pipermail/sle-security-updates/2022-September/012182.html E-Mail link for SUSE-SU-2022:3178-1 https://lists.suse.com/pipermail/sle-security-updates/2024-January/017743.html E-Mail link for SUSE-SU-2024:0196-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/D7KK2SNPNAB353QA6BU4SNJDQ3FXZOY5/ E-Mail link for openSUSE-SU-2022:0081-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/7LWEIR2LXW4QRWCY6HDMLUO2OTX5OZIC/ E-Mail link for openSUSE-SU-2024:14536-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings HPE Helion OpenStack 8 SUSE Linux Enterprise Server 11 SP3-TERADATA SUSE Linux Enterprise Server 16.0 SUSE Manager Client Tools 15 SUSE Manager Client Tools 15-BETA SUSE Manager Proxy Module 4.2 SUSE Manager Proxy Module 4.3 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE Package Hub 15 SP3 openSUSE Leap 15.3 openSUSE Leap 15.4 openSUSE Tumbleweed ansible ansible-10-10.6.0-1.1 ansible-11-11.11.0-1.1 ansible-11.3.0-160000.3.2 ansible-12-12.2.0-1.1 ansible-2.9.21-bp153.2.3.1 ansible-2.9.22-11.17.1 ansible-2.9.22-3.18.1 ansible-2.9.24-1.2 ansible-2.9.27-150000.1.14.1 ansible-2.9.27-159000.3.9.1 ansible-9-9.8.0-1.1 ansible-doc-2.9.21-bp153.2.3.1 ansible-doc-2.9.24-1.2 ansible-doc-2.9.27-150000.1.14.1 ansible-doc-2.9.27-159000.3.9.1 ansible-test-2.9.21-bp153.2.3.1 ansible-test-2.9.24-1.2 ansible-test-2.9.27-150000.1.14.1 ansible1 ansible-2.9.22-3.18.1 as a component of HPE Helion OpenStack 8 ansible-2.9.22-11.17.1 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA ansible-11.3.0-160000.3.2 as a component of SUSE Linux Enterprise Server 16.0 ansible-2.9.27-150000.1.14.1 as a component of SUSE Manager Client Tools 15 ansible-doc-2.9.27-150000.1.14.1 as a component of SUSE Manager Client Tools 15 ansible-2.9.27-159000.3.9.1 as a component of SUSE Manager Client Tools 15-BETA ansible-doc-2.9.27-159000.3.9.1 as a component of SUSE Manager Client Tools 15-BETA ansible-2.9.27-150000.1.14.1 as a component of SUSE Manager Proxy Module 4.2 ansible-doc-2.9.27-150000.1.14.1 as a component of SUSE Manager Proxy Module 4.2 ansible-2.9.27-150000.1.14.1 as a component of SUSE Manager Proxy Module 4.3 ansible-doc-2.9.27-150000.1.14.1 as a component of SUSE Manager Proxy Module 4.3 ansible-2.9.22-3.18.1 as a component of SUSE OpenStack Cloud 8 ansible-2.9.22-3.18.1 as a component of SUSE OpenStack Cloud Crowbar 8 ansible-2.9.21-bp153.2.3.1 as a component of SUSE Package Hub 15 SP3 ansible-doc-2.9.21-bp153.2.3.1 as a component of SUSE Package Hub 15 SP3 ansible-test-2.9.21-bp153.2.3.1 as a component of SUSE Package Hub 15 SP3 ansible-2.9.27-150000.1.14.1 as a component of openSUSE Leap 15.3 ansible-doc-2.9.27-150000.1.14.1 as a component of openSUSE Leap 15.3 ansible-test-2.9.27-150000.1.14.1 as a component of openSUSE Leap 15.3 ansible-2.9.27-150000.1.14.1 as a component of openSUSE Leap 15.4 ansible-doc-2.9.27-150000.1.14.1 as a component of openSUSE Leap 15.4 ansible-test-2.9.27-150000.1.14.1 as a component of openSUSE Leap 15.4 ansible-2.9.24-1.2 as a component of openSUSE Tumbleweed ansible-10-10.6.0-1.1 as a component of openSUSE Tumbleweed ansible-11-11.11.0-1.1 as a component of openSUSE Tumbleweed ansible-12-12.2.0-1.1 as a component of openSUSE Tumbleweed ansible-9-9.8.0-1.1 as a component of openSUSE Tumbleweed ansible-doc-2.9.24-1.2 as a component of openSUSE Tumbleweed ansible-test-2.9.24-1.2 as a component of openSUSE Tumbleweed ansible1 as a component of HPE Helion OpenStack 8 ansible as a component of SUSE OpenStack Cloud 7 ansible1 as a component of SUSE OpenStack Cloud 8 ansible1 as a component of SUSE OpenStack Cloud 9 A flaw was found in ansible module where credentials are disclosed in the console log by default and not protected by the security feature when using the bitbucket_pipeline_variable module. This flaw allows an attacker to steal bitbucket_pipeline credentials. The highest threat from this vulnerability is to confidentiality. CVE-2021-20178 HPE Helion OpenStack 8:ansible-2.9.22-3.18.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP5:ansible-2.9.27-150000.1.14.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP5:ansible-doc-2.9.27-150000.1.14.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP5:ansible-test-2.9.27-150000.1.14.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP6:ansible-2.9.27-150000.1.14.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP6:ansible-doc-2.9.27-150000.1.14.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP6:ansible-test-2.9.27-150000.1.14.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP7:ansible-2.9.27-150000.1.14.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP7:ansible-doc-2.9.27-150000.1.14.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP7:ansible-test-2.9.27-150000.1.14.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:ansible-2.9.22-11.17.1 SUSE Linux Enterprise Server 16.0:ansible-11.3.0-160000.3.2 SUSE Manager Client Tools 15:ansible-2.9.27-150000.1.14.1 SUSE Manager Client Tools 15:ansible-doc-2.9.27-150000.1.14.1 SUSE Manager Client Tools 15-BETA:ansible-2.9.27-159000.3.9.1 SUSE Manager Client Tools 15-BETA:ansible-doc-2.9.27-159000.3.9.1 SUSE Manager Proxy Module 4.2:ansible-2.9.27-150000.1.14.1 SUSE Manager Proxy Module 4.2:ansible-doc-2.9.27-150000.1.14.1 SUSE Manager Proxy Module 4.3:ansible-2.9.27-150000.1.14.1 SUSE Manager Proxy Module 4.3:ansible-doc-2.9.27-150000.1.14.1 SUSE OpenStack Cloud 8:ansible-2.9.22-3.18.1 SUSE OpenStack Cloud Crowbar 8:ansible-2.9.22-3.18.1 SUSE Package Hub 15 SP3:ansible-2.9.21-bp153.2.3.1 SUSE Package Hub 15 SP3:ansible-doc-2.9.21-bp153.2.3.1 SUSE Package Hub 15 SP3:ansible-test-2.9.21-bp153.2.3.1 openSUSE Leap 15.3:ansible-2.9.27-150000.1.14.1 openSUSE Leap 15.3:ansible-doc-2.9.27-150000.1.14.1 openSUSE Leap 15.3:ansible-test-2.9.27-150000.1.14.1 openSUSE Leap 15.4:ansible-2.9.27-150000.1.14.1 openSUSE Leap 15.4:ansible-doc-2.9.27-150000.1.14.1 openSUSE Leap 15.4:ansible-test-2.9.27-150000.1.14.1 openSUSE Tumbleweed:ansible-2.9.24-1.2 openSUSE Tumbleweed:ansible-10-10.6.0-1.1 openSUSE Tumbleweed:ansible-11-11.11.0-1.1 openSUSE Tumbleweed:ansible-12-12.2.0-1.1 openSUSE Tumbleweed:ansible-9-9.8.0-1.1 openSUSE Tumbleweed:ansible-doc-2.9.24-1.2 openSUSE Tumbleweed:ansible-test-2.9.24-1.2 HPE Helion OpenStack 8:ansible1 SUSE OpenStack Cloud 7:ansible SUSE OpenStack Cloud 8:ansible1 SUSE OpenStack Cloud 9:ansible1 moderate 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N 5 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N