Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:ansible-tower:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorN/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78)
ProductAnsible Tower (284b4ba6-3e85-5bbd-bd70-26c0007788e2)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2021-4112 vulnerable 2026-06-08 05:38:08.438387 Details available
A flaw was found in ansible-tower where the default installation is vulnerable to job isolation escape. This flaw allows an attacker to elevate the privilege from a low privileged user to an AWX user from outside the isolated environment.
Published: 2022-08-25T19:35:45.000Z
Updated: 2024-08-03T17:16:04.236Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-20253 vulnerable 2026-06-08 05:29:08.821632 Details available
A flaw was found in ansible-tower. The default installation is vulnerable to Job Isolation escape allowing an attacker to elevate the privilege from a low privileged user to the awx user from outside the isolated environment. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
Published: 2021-03-09T17:14:28.000Z
Updated: 2024-08-03T17:37:22.981Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.