Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/111955?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/111955?format=api", "vulnerability_id": "VCID-hxcq-jtgk-5fdz", "summary": "A flaw was found in the Red Hat Ansible Automation Platform Gateway route creation component. This vulnerability allows credential theft via the creation of misleading routes using a double-slash (//) prefix in the gateway_path. A malicious or socially engineered administrator can configure a honey-pot route to intercept and exfiltrate user credentials, potentially maintaining persistent access or creating a backdoor even after their permissions are revoked.", "aliases": [ { "alias": "CVE-2025-9909" } ], "fixed_packages": [], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/328862?format=api", "purl": "pkg:rpm/redhat/ansible-builder@3.1.1-1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-builder@3.1.1-1%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328899?format=api", "purl": "pkg:rpm/redhat/ansible-builder@3.1.1-1?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-builder@3.1.1-1%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328853?format=api", "purl": "pkg:rpm/redhat/ansible-creator@25.12.0-1?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-creator@25.12.0-1%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328887?format=api", "purl": "pkg:rpm/redhat/ansible-creator@25.12.0-1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-creator@25.12.0-1%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328856?format=api", "purl": "pkg:rpm/redhat/ansible-dev-environment@25.12.2-1.1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-dev-environment@25.12.2-1.1%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328883?format=api", "purl": "pkg:rpm/redhat/ansible-dev-environment@25.12.2-1.1?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-dev-environment@25.12.2-1.1%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328863?format=api", "purl": "pkg:rpm/redhat/ansible-dev-tools@25.12.0-1?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-dev-tools@25.12.0-1%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328898?format=api", "purl": "pkg:rpm/redhat/ansible-dev-tools@25.12.0-1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-dev-tools@25.12.0-1%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328865?format=api", "purl": "pkg:rpm/redhat/ansible-lint@25.12.0-1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-lint@25.12.0-1%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328901?format=api", "purl": "pkg:rpm/redhat/ansible-lint@25.12.0-1?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-lint@25.12.0-1%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328873?format=api", "purl": "pkg:rpm/redhat/ansible-navigator@25.12.0-1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-navigator@25.12.0-1%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328908?format=api", "purl": "pkg:rpm/redhat/ansible-navigator@25.12.0-1?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-navigator@25.12.0-1%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328874?format=api", "purl": "pkg:rpm/redhat/ansible-sign@0.1.4-1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-sign@0.1.4-1%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328909?format=api", "purl": "pkg:rpm/redhat/ansible-sign@0.1.4-1?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-sign@0.1.4-1%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328852?format=api", "purl": "pkg:rpm/redhat/automation-gateway@2.5.20251210-1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/automation-gateway@2.5.20251210-1%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328888?format=api", "purl": "pkg:rpm/redhat/automation-gateway@2.5.20251210-1?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/automation-gateway@2.5.20251210-1%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/329453?format=api", "purl": "pkg:rpm/redhat/automation-gateway@2.6.20251119-1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-hxcq-jtgk-5fdz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/automation-gateway@2.6.20251119-1%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328868?format=api", "purl": "pkg:rpm/redhat/automation-hub@4.10.10-1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/automation-hub@4.10.10-1%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328902?format=api", "purl": "pkg:rpm/redhat/automation-hub@4.10.10-1?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/automation-hub@4.10.10-1%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328876?format=api", "purl": "pkg:rpm/redhat/bindep@2.13.0-1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/bindep@2.13.0-1%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328911?format=api", "purl": "pkg:rpm/redhat/bindep@2.13.0-1?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/bindep@2.13.0-1%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328851?format=api", "purl": "pkg:rpm/redhat/molecule@25.12.0-1?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/molecule@25.12.0-1%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328886?format=api", "purl": "pkg:rpm/redhat/molecule@25.12.0-1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/molecule@25.12.0-1%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328847?format=api", "purl": "pkg:rpm/redhat/python3.11-ansible-compat@25.12.0-1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-ansible-compat@25.12.0-1%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328882?format=api", "purl": "pkg:rpm/redhat/python3.11-ansible-compat@25.12.0-1?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-ansible-compat@25.12.0-1%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328846?format=api", "purl": "pkg:rpm/redhat/python3.11-distlib@0.4.0-1?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-distlib@0.4.0-1%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328875?format=api", "purl": "pkg:rpm/redhat/python3.11-distlib@0.4.0-1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-distlib@0.4.0-1%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328903?format=api", "purl": "pkg:rpm/redhat/python3.11-django@4.2.26-1?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-django@4.2.26-1%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328867?format=api", "purl": "pkg:rpm/redhat/python3.11-django@4.2.26-1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-django@4.2.26-1%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328881?format=api", "purl": "pkg:rpm/redhat/python3.11-execnet@2.1.2-1?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-execnet@2.1.2-1%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328848?format=api", "purl": "pkg:rpm/redhat/python3.11-execnet@2.1.2-1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-execnet@2.1.2-1%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328905?format=api", "purl": "pkg:rpm/redhat/python3.11-galaxy-importer@0.4.36-2?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-galaxy-importer@0.4.36-2%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328864?format=api", "purl": "pkg:rpm/redhat/python3.11-galaxy-importer@0.4.36-2?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-galaxy-importer@0.4.36-2%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328884?format=api", "purl": "pkg:rpm/redhat/python3.11-galaxy-ng@4.10.10-1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-galaxy-ng@4.10.10-1%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328849?format=api", "purl": "pkg:rpm/redhat/python3.11-galaxy-ng@4.10.10-1?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-galaxy-ng@4.10.10-1%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328854?format=api", "purl": "pkg:rpm/redhat/python3.11-gunicorn@23.0.0-1?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-gunicorn@23.0.0-1%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328890?format=api", "purl": "pkg:rpm/redhat/python3.11-gunicorn@23.0.0-1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-gunicorn@23.0.0-1%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328897?format=api", "purl": "pkg:rpm/redhat/python3.11-pluggy@1.6.0-1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-pluggy@1.6.0-1%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328872?format=api", "purl": "pkg:rpm/redhat/python3.11-pluggy@1.6.0-1?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-pluggy@1.6.0-1%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328857?format=api", "purl": "pkg:rpm/redhat/python3.11-pytest@9.0.1-1?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-pytest@9.0.1-1%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328895?format=api", "purl": "pkg:rpm/redhat/python3.11-pytest@9.0.1-1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-pytest@9.0.1-1%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328871?format=api", "purl": "pkg:rpm/redhat/python3.11-pytest-ansible@25.12.0-1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-pytest-ansible@25.12.0-1%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328906?format=api", "purl": "pkg:rpm/redhat/python3.11-pytest-ansible@25.12.0-1?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-pytest-ansible@25.12.0-1%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328885?format=api", "purl": "pkg:rpm/redhat/python3.11-pytest-xdist@3.8.0-1?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-pytest-xdist@3.8.0-1%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328900?format=api", "purl": "pkg:rpm/redhat/python3.11-pytest-xdist@3.8.0-1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-pytest-xdist@3.8.0-1%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328845?format=api", "purl": "pkg:rpm/redhat/python3.11-ruamel-yaml-clib@0.2.15-1?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-ruamel-yaml-clib@0.2.15-1%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328879?format=api", "purl": "pkg:rpm/redhat/python3.11-ruamel-yaml-clib@0.2.15-1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-ruamel-yaml-clib@0.2.15-1%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328858?format=api", "purl": "pkg:rpm/redhat/python3.11-subprocess-tee@0.4.2-1?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-subprocess-tee@0.4.2-1%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328891?format=api", "purl": "pkg:rpm/redhat/python3.11-subprocess-tee@0.4.2-1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-subprocess-tee@0.4.2-1%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328861?format=api", "purl": "pkg:rpm/redhat/python3.11-tox-ansible@25.12.0-1.2?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-tox-ansible@25.12.0-1.2%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328896?format=api", "purl": "pkg:rpm/redhat/python3.11-tox-ansible@25.12.0-1.2?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-tox-ansible@25.12.0-1.2%3Farch=el9ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328893?format=api", "purl": "pkg:rpm/redhat/python3.11-typing-extensions@4.15.0-1?arch=el8ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-typing-extensions@4.15.0-1%3Farch=el8ap" }, { "url": "http://public2.vulnerablecode.io/api/packages/328860?format=api", "purl": "pkg:rpm/redhat/python3.11-typing-extensions@4.15.0-1?arch=el9ap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-beas-dwx6-1ffp" }, { "vulnerability": "VCID-g4m2-6ftk-bbaa" }, { "vulnerability": "VCID-hthz-2uar-nkht" }, { "vulnerability": "VCID-hxcq-jtgk-5fdz" }, { "vulnerability": "VCID-uczy-qxxa-uff1" }, { "vulnerability": "VCID-vdjv-k38h-aqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-typing-extensions@4.15.0-1%3Farch=el9ap" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-9909.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-9909.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-9909", "reference_id": "", "reference_type": "", "scores": [ { "value": "5e-05", "scoring_system": "epss", "scoring_elements": "0.00272", "published_at": "2026-06-12T12:55:00Z" }, { "value": "5e-05", "scoring_system": "epss", "scoring_elements": "0.00273", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-9909" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform:2.5::el8", "reference_id": "cpe:/a:redhat:ansible_automation_platform:2.5::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform:2.5::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform:2.5::el9", "reference_id": "cpe:/a:redhat:ansible_automation_platform:2.5::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform:2.5::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform:2.6::el9", "reference_id": "cpe:/a:redhat:ansible_automation_platform:2.6::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform:2.6::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_developer:2.5::el8", "reference_id": "cpe:/a:redhat:ansible_automation_platform_developer:2.5::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_developer:2.5::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_developer:2.5::el9", "reference_id": "cpe:/a:redhat:ansible_automation_platform_developer:2.5::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_developer:2.5::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9", "reference_id": "cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_inside:2.5::el8", "reference_id": "cpe:/a:redhat:ansible_automation_platform_inside:2.5::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_inside:2.5::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_inside:2.5::el9", "reference_id": "cpe:/a:redhat:ansible_automation_platform_inside:2.5::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_inside:2.5::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_inside:2.6::el9", "reference_id": "cpe:/a:redhat:ansible_automation_platform_inside:2.6::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_inside:2.6::el9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-9909", "reference_id": "CVE-2025-9909", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-27T18:42:58Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-9909" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21768", "reference_id": "RHSA-2025:21768", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-27T18:42:58Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21768" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21775", "reference_id": "RHSA-2025:21775", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-27T18:42:58Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:23069", "reference_id": "RHSA-2025:23069", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-27T18:42:58Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:23069" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:23131", "reference_id": "RHSA-2025:23131", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-27T18:42:58Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:23131" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2392836", "reference_id": "show_bug.cgi?id=2392836", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-27T18:42:58Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2392836" } ], "weaknesses": [ { "cwe_id": 647, "name": "Use of Non-Canonical URL Paths for Authorization Decisions", "description": "The product defines policy namespaces and makes authorization decisions based on the assumption that a URL is canonical. This can allow a non-canonical URL to bypass the authorization." } ], "exploits": [], "severity_range_score": "6.7 - 6.7", "exploitability": "0.5", "weighted_severity": "6.0", "risk_score": 3.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hxcq-jtgk-5fdz" }