CVEs-PoC/2021/CVE-2021-20228.md

### [CVE-2021-20228](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20228)
![](https://img.shields.io/static/v1?label=Product&message=ansible&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=ansible-engine%202.9.18%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-200-%3ECWE-522&color=brightgreen)

### Description

A flaw was found in the Ansible Engine 2.9.18, where sensitive info is not masked by default and is not protected by the no_log feature when using the sub-option feature of the basic.py module. This flaw allows an attacker to obtain sensitive information. The highest threat from this vulnerability is to confidentiality.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/equinor/appsec-owasptop10wrkshp
- https://github.com/n0-traces/cve_monitor