CVE-2021-33923
MEDIUMConfluent cp-ansible 5.5.0-5.5.2, 6.0.0 - Incorrect Default Permissions
Title source: llmDescription
Insecure permissions in Confluent Ansible (cp-ansible) 5.5.0, 5.5.1, 5.5.2 and 6.0.0 allows local attackers to access some sensitive information (private keys, state database).
References (2)
Core 2
Core References
Third Party Advisory x_refsource_misc
https://www.detack.de/en/cve-2021-33923
Vendor Advisory x_refsource_misc
https://confluent.io
Scores
CVSS v3
5.5
EPSS
0.0029
EPSS Percentile
20.2%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-276
Status
published
Products (4)
confluent/cp-ansible
5.5.0
confluent/cp-ansible
5.5.1
confluent/cp-ansible
5.5.2
confluent/cp-ansible
6.0.0
Published
Sep 29, 2021
Tracked Since
Feb 18, 2026