Skip to main content

Red Hat Ansible Automation Platform 2 6

1 CVEs product

Monthly

CVE-2026-11807 CRITICAL PATCH Act Now

Credential disclosure in Red Hat Ansible Automation Platform 2.5 and 2.6 allows any authenticated user to retrieve plaintext OAuth tokens, vault passwords, and SSH keys by sending forged Worker messages to the Event-Driven Ansible websocket endpoint. The /api/eda/ws/ansible-rulebook endpoint fails to verify permissions on activation_id values, enabling lateral credential theft across tenants. No public exploit identified at time of analysis, but the low attack complexity and scope-changed CVSS of 9.6 make this a high-priority patch.

Hashicorp Authentication Bypass Red Hat Ansible Automation Platform 2 5 Red Hat Ansible Automation Platform 2 6 Red Hat Ansible Automation Platform 2
NVD VulDB
CVSS 3.1
9.6
EPSS
0.4%
EPSS 0% CVSS 9.6
CRITICAL PATCH Act Now

Credential disclosure in Red Hat Ansible Automation Platform 2.5 and 2.6 allows any authenticated user to retrieve plaintext OAuth tokens, vault passwords, and SSH keys by sending forged Worker messages to the Event-Driven Ansible websocket endpoint. The /api/eda/ws/ansible-rulebook endpoint fails to verify permissions on activation_id values, enabling lateral credential theft across tenants. No public exploit identified at time of analysis, but the low attack complexity and scope-changed CVSS of 9.6 make this a high-priority patch.

Hashicorp Authentication Bypass Red Hat Ansible Automation Platform 2 5 +2
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy