Vulnerabilities > Redhat > Ansible Tower > 3.6.7
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-22 | CVE-2021-3583 | Code Injection vulnerability in Redhat Ansible Automation Platform and Ansible Tower A flaw was found in Ansible, where a user's controller is vulnerable to template injection. | 7.1 |
| 2021-05-27 | CVE-2020-14328 | Unspecified vulnerability in Redhat Ansible Tower A flaw was found in Ansible Tower in versions before 3.7.2. | 3.3 |
| 2021-05-27 | CVE-2020-14329 | Unspecified vulnerability in Redhat Ansible Tower A data exposure flaw was found in Ansible Tower in versions before 3.7.2, where sensitive data can be exposed from the /api/v2/labels/ endpoint. | 3.3 |
| 2021-04-01 | CVE-2021-3447 | A flaw was found in several ansible modules, where parameters containing credentials, such as secrets, were being logged in plain-text on managed nodes, as well as being made visible on the controller node when run in verbose mode. | 5.5 |