Lucene search
K

457 matches found

RedHat Linux
RedHat Linux
added 2026/01/28 3:32 p.m.10 views

Important: Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update

An update is now available for Red Hat Ansible Automation Platform 2.4 Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

8.9CVSS6.8AI score0.02143EPSS
Exploits2References7
NVD
NVD
added 2026/01/27 3:15 p.m.12 views

CVE-2026-1470

n8n contains a critical Remote Code Execution RCE vulnerability in its workflow Expression evaluation system. Expressions supplied by authenticated users during workflow configuration may be evaluated in an execution context that is not sufficiently isolated from the underlying runtime. An...

9.9CVSS0.18071EPSS
Exploits2References2
EUVD
EUVD
added 2026/01/21 3:58 a.m.5 views

EUVD-2026-3766

Malicious code in n8n-nodes-zl-vietts npm...

5.5AI score
Exploits0References1
OSV
OSV
added 2026/01/14 10:38 a.m.9 views

RHSA-2026:0361 Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Product Security Update

Bulletin has no description...

8.5CVSS6.9AI score0.00389EPSS
Exploits0References8
OSV
OSV
added 2026/01/14 10:38 a.m.6 views

RHSA-2026:0360 Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.6 Product Security Update

Bulletin has no description...

8.5CVSS6.9AI score0.00389EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.4 views

RHEL 8 / 9 : Red Hat Ansible Automation Platform 2.5 Product Security Update (Important) (RHSA-2026:0361)

The remote Redhat Enterprise Linux 8 / 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:0361 advisory. Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can...

8.5CVSS5.6AI score0.00389EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.5 views

RHEL 9 : Red Hat Ansible Automation Platform 2.6 Product Security Update (Important) (RHSA-2026:0360)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:0360 advisory. Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can...

8.5CVSS5.6AI score0.00389EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/01/08 7:41 p.m.7 views

Critical: Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Container Release Update

An update is now available for Red Hat Ansible Automation Platform 2.5 Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams,...

9.3CVSS7.5AI score0.1383EPSS
Exploits5References4
RedHat Linux
RedHat Linux
added 2026/01/08 7:38 p.m.8 views

Critical: Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.6 Container Release Update

An update is now available for Red Hat Ansible Automation Platform 2.6 Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams,...

9.3CVSS7.5AI score0.1383EPSS
Exploits5References4
RedHat Linux
RedHat Linux
added 2026/01/08 7:34 p.m.4 views

Critical: Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Container Release Update

An update is now available for Red Hat Ansible Automation Platform 2.4 Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams,...

9.3CVSS7.5AI score0.1383EPSS
Exploits5References3
NVD
NVD
added 2026/01/08 2:15 p.m.6 views

CVE-2025-14025

A flaw was found in Ansible Automation Platform AAP. Read-only scoped OAuth2 API Tokens in AAP, are enforced at the Gateway level for Gateway-specific operations. However, this vulnerability allows read-only tokens to perform write operations on backend services e.g., Controller, Hub, EDA. If thi...

8.5CVSS0.00389EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2026/01/08 2:13 p.m.4 views

ansible-automation-platform/aap-gateway: aap-gateway: Read-only Personal Access Token (PAT) bypasses write restrictions

A flaw was found in Ansible Automation Platform AAP. Read-only scoped OAuth2 API Tokens in AAP, are enforced at the Gateway level for Gateway-specific operations. However, this vulnerability allows read-only tokens to perform write operations on backend services e.g., Controller, Hub, EDA. If thi...

8.5CVSS5.7AI score0.00389EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/01/08 2:12 p.m.4 views

Important: Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.6 Product Security Update

An update is now available for Red Hat Ansible Automation Platform 2.6 Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

8.5CVSS5.8AI score0.00389EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/01/08 2:12 p.m.13 views

ansible-automation-platform/aap-gateway: aap-gateway: Read-only Personal Access Token (PAT) bypasses write restrictions

A flaw was found in Ansible Automation Platform AAP. Read-only scoped OAuth2 API Tokens in AAP, are enforced at the Gateway level for Gateway-specific operations. However, this vulnerability allows read-only tokens to perform write operations on backend services e.g., Controller, Hub, EDA. If thi...

8.5CVSS5.7AI score0.00389EPSS
Exploits0References5
CVE
CVE
added 2026/01/08 1:44 p.m.27 views

CVE-2025-14025

CVE-2025-14025 affects Red Hat Ansible Automation Platform (AAP) where read-only OAuth2 tokens bypass gateway write restrictions, enabling write operations to backend services (Controller, Hub, EDA) limited only by RBAC. The issue is fixed via Red Hat advisories RHSA-2026:0360/0361, which note a ...

8.5CVSS6.2AI score0.00389EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2026/01/08 1:44 p.m.4 views

CVE-2025-14025 Ansible-automation-platform/aap-gateway: aap-gateway: read-only personal access token (pat) bypasses write restrictions

A flaw was found in Ansible Automation Platform AAP. Read-only scoped OAuth2 API Tokens in AAP, are enforced at the Gateway level for Gateway-specific operations. However, this vulnerability allows read-only tokens to perform write operations on backend services e.g., Controller, Hub, EDA. If thi...

8.5CVSS6.2AI score0.00389EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/01/08 1:44 p.m.21 views

CVE-2025-14025 Ansible-automation-platform/aap-gateway: aap-gateway: read-only personal access token (pat) bypasses write restrictions

A flaw was found in Ansible Automation Platform AAP. Read-only scoped OAuth2 API Tokens in AAP, are enforced at the Gateway level for Gateway-specific operations. However, this vulnerability allows read-only tokens to perform write operations on backend services e.g., Controller, Hub, EDA. If thi...

8.5CVSS0.00389EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/01/08 12:0 a.m.8 views

PT-2026-1730

Name of the Vulnerable Software and Affected Versions Ansible Automation Platform AAP affected versions not specified Description A flaw exists in Ansible Automation Platform AAP where read-only scoped OAuth2 API Tokens, enforced at the Gateway level for Gateway-specific operations, can be used t...

8.5CVSS6.4AI score0.00389EPSS
Exploits0References14
RedHat Linux
RedHat Linux
added 2025/12/15 1:6 p.m.10 views

Important: Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.6 Ansible DevSpaces Container Release Update

An update is now available for Red Hat Ansible Automation Platform Ansible DevSpaces Container Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied...

9.8CVSS7.4AI score0.19396EPSS
Exploits10References5
RedHat Linux
RedHat Linux
added 2025/12/11 2:36 p.m.22 views

Important: Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.6 Container Release Update

An update is now available for Red Hat Ansible Automation Platform 2.6 Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams,...

9.1CVSS7AI score0.19396EPSS
Exploits10References4
Rows per page
Query Builder