{ "affected": [ { "ranges": [ { "database_specific": { "versions": [ { "introduced": "0" }, { "last_affected": "5.5.0" }, { "introduced": "0" }, { "last_affected": "5.5.1" }, { "introduced": "0" }, { "last_affected": "5.5.2" }, { "introduced": "0" }, { "last_affected": "6.0.0" } ] }, "events": [ { "introduced": "0" }, { "last_affected": "d62339f3ca69eb3958bbf4be6eae97f014134780" }, { "introduced": "0" }, { "last_affected": "f337af2f9667ec11d85d259c8342ab13ca30b2ea" }, { "introduced": "0" }, { "last_affected": "11edda2aed791c11fbcc430c25520758b72b32a3" }, { "introduced": "0" }, { "last_affected": "9c7954d5d32bb5d6aa5e84f9d9570a5ee6ba54bb" } ], "repo": "https://github.com/confluentinc/cp-ansible", "type": "GIT" } ] } ], "details": "Confluent Ansible (cp-ansible) version 5.5.0, 5.5.1, 5.5.2 and 6.0.0 is vulnerable to Incorrect Access Control via its auxiliary component that allows remote attackers to access sensitive information.", "id": "CVE-2021-33924", "modified": "2026-04-01T23:07:56.163265591Z", "published": "2021-09-29T10:15:07.747Z", "references": [ { "type": "ADVISORY", "url": "https://www.detack.de/en/cve-2021-33924" }, { "type": "ADVISORY", "url": "https://confluent.io" } ], "severity": [ { "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" } ] }