Django REST framework
Api Root
Vulnerability List
Vulnerability Instance
Format
json
api
admin
Vulnerability Instance
Lookup for vulnerabilities affecting packages.
Vulnerability_id
VCID-8p3a-fmau-17ad
Summary
aap-controller: aap-gateway: Account hijacking and unauthorized access via unverified email linking
Aliases
0
alias
CVE-2026-6266
Fixed_packages
Affected_packages
0
url
pkg:rpm/redhat/automation-controller@4.6.28-3?arch=el8ap
purl
pkg:rpm/redhat/automation-controller@4.6.28-3?arch=el8ap
is_vulnerable
true
affected_by_vulnerabilities
0
vulnerability
VCID-8p3a-fmau-17ad
1
vulnerability
VCID-f44c-ygbw-bufn
2
vulnerability
VCID-shhe-tubm-f7f8
resource_url
http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/automation-controller@4.6.28-3%3Farch=el8ap
1
url
pkg:rpm/redhat/automation-controller@4.6.28-3?arch=el9ap
purl
pkg:rpm/redhat/automation-controller@4.6.28-3?arch=el9ap
is_vulnerable
true
affected_by_vulnerabilities
0
vulnerability
VCID-8p3a-fmau-17ad
1
vulnerability
VCID-f44c-ygbw-bufn
2
vulnerability
VCID-shhe-tubm-f7f8
resource_url
http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/automation-controller@4.6.28-3%3Farch=el9ap
2
url
pkg:rpm/redhat/automation-controller@4.7.11-2?arch=el9ap
purl
pkg:rpm/redhat/automation-controller@4.7.11-2?arch=el9ap
is_vulnerable
true
affected_by_vulnerabilities
0
vulnerability
VCID-8p3a-fmau-17ad
1
vulnerability
VCID-e9k9-1s9f-dbgv
2
vulnerability
VCID-gar7-7upf-d7cz
3
vulnerability
VCID-mt1s-vhfk-5bda
4
vulnerability
VCID-shhe-tubm-f7f8
resource_url
http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/automation-controller@4.7.11-2%3Farch=el9ap
3
url
pkg:rpm/redhat/automation-gateway@2.5.20260422-2?arch=el8ap
purl
pkg:rpm/redhat/automation-gateway@2.5.20260422-2?arch=el8ap
is_vulnerable
true
affected_by_vulnerabilities
0
vulnerability
VCID-1znw-5dwm-7ydy
1
vulnerability
VCID-8p3a-fmau-17ad
2
vulnerability
VCID-d6bq-bvvm-33f4
3
vulnerability
VCID-kmtj-812h-zudn
resource_url
http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/automation-gateway@2.5.20260422-2%3Farch=el8ap
4
url
pkg:rpm/redhat/automation-gateway@2.5.20260422-2?arch=el9ap
purl
pkg:rpm/redhat/automation-gateway@2.5.20260422-2?arch=el9ap
is_vulnerable
true
affected_by_vulnerabilities
0
vulnerability
VCID-1znw-5dwm-7ydy
1
vulnerability
VCID-8p3a-fmau-17ad
2
vulnerability
VCID-d6bq-bvvm-33f4
3
vulnerability
VCID-kmtj-812h-zudn
resource_url
http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/automation-gateway@2.5.20260422-2%3Farch=el9ap
5
url
pkg:rpm/redhat/automation-gateway@2.6.20260422-1?arch=el9ap
purl
pkg:rpm/redhat/automation-gateway@2.6.20260422-1?arch=el9ap
is_vulnerable
true
affected_by_vulnerabilities
0
vulnerability
VCID-8p3a-fmau-17ad
resource_url
http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/automation-gateway@2.6.20260422-1%3Farch=el9ap
6
url
pkg:rpm/redhat/python3.12-django-ansible-base@2.5.20260422-2?arch=el9ap
purl
pkg:rpm/redhat/python3.12-django-ansible-base@2.5.20260422-2?arch=el9ap
is_vulnerable
true
affected_by_vulnerabilities
0
vulnerability
VCID-8p3a-fmau-17ad
resource_url
http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.12-django-ansible-base@2.5.20260422-2%3Farch=el9ap
7
url
pkg:rpm/redhat/python3.12-django-ansible-base@2.5.20260422-2?arch=el8ap
purl
pkg:rpm/redhat/python3.12-django-ansible-base@2.5.20260422-2?arch=el8ap
is_vulnerable
true
affected_by_vulnerabilities
0
vulnerability
VCID-8p3a-fmau-17ad
resource_url
http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.12-django-ansible-base@2.5.20260422-2%3Farch=el8ap
8
url
pkg:rpm/redhat/python3.12-django-ansible-base@2.6.20260422-1?arch=el9ap
purl
pkg:rpm/redhat/python3.12-django-ansible-base@2.6.20260422-1?arch=el9ap
is_vulnerable
true
affected_by_vulnerabilities
0
vulnerability
VCID-8p3a-fmau-17ad
resource_url
http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.12-django-ansible-base@2.6.20260422-1%3Farch=el9ap
References
0
reference_url
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6266.json
reference_id
reference_type
scores
0
value
8.3
scoring_system
cvssv3
scoring_elements
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
url
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6266.json
1
reference_url
https://api.first.org/data/v1/epss?cve=CVE-2026-6266
reference_id
reference_type
scores
0
value
0.00036
scoring_system
epss
scoring_elements
0.10736
published_at
2026-05-07T12:55:00Z
1
value
0.00042
scoring_system
epss
scoring_elements
0.12621
published_at
2026-05-05T12:55:00Z
url
https://api.first.org/data/v1/epss?cve=CVE-2026-6266
2
reference_url
https://bugzilla.redhat.com/show_bug.cgi?id=2458142
reference_id
2458142
reference_type
scores
0
value
8.3
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
1
value
Track
scoring_system
ssvc
scoring_elements
SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-04T16:33:27Z/
url
https://bugzilla.redhat.com/show_bug.cgi?id=2458142
3
reference_url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform:2.5::el8
reference_id
cpe:/a:redhat:ansible_automation_platform:2.5::el8
reference_type
scores
url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform:2.5::el8
4
reference_url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform:2.5::el9
reference_id
cpe:/a:redhat:ansible_automation_platform:2.5::el9
reference_type
scores
url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform:2.5::el9
5
reference_url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform:2.6::el10
reference_id
cpe:/a:redhat:ansible_automation_platform:2.6::el10
reference_type
scores
url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform:2.6::el10
6
reference_url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform:2.6::el9
reference_id
cpe:/a:redhat:ansible_automation_platform:2.6::el9
reference_type
scores
url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform:2.6::el9
7
reference_url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_developer:2.5::el8
reference_id
cpe:/a:redhat:ansible_automation_platform_developer:2.5::el8
reference_type
scores
url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_developer:2.5::el8
8
reference_url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_developer:2.5::el9
reference_id
cpe:/a:redhat:ansible_automation_platform_developer:2.5::el9
reference_type
scores
url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_developer:2.5::el9
9
reference_url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_developer:2.6::el10
reference_id
cpe:/a:redhat:ansible_automation_platform_developer:2.6::el10
reference_type
scores
url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_developer:2.6::el10
10
reference_url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9
reference_id
cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9
reference_type
scores
url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9
11
reference_url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_inside:2.5::el8
reference_id
cpe:/a:redhat:ansible_automation_platform_inside:2.5::el8
reference_type
scores
url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_inside:2.5::el8
12
reference_url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_inside:2.5::el9
reference_id
cpe:/a:redhat:ansible_automation_platform_inside:2.5::el9
reference_type
scores
url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_inside:2.5::el9
13
reference_url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_inside:2.6::el9
reference_id
cpe:/a:redhat:ansible_automation_platform_inside:2.6::el9
reference_type
scores
url
https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_inside:2.6::el9
14
reference_url
https://access.redhat.com/security/cve/CVE-2026-6266
reference_id
CVE-2026-6266
reference_type
scores
0
value
8.3
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
1
value
Track
scoring_system
ssvc
scoring_elements
SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-04T16:33:27Z/
url
https://access.redhat.com/security/cve/CVE-2026-6266
15
reference_url
https://access.redhat.com/errata/RHSA-2026:13508
reference_id
RHSA-2026:13508
reference_type
scores
0
value
8.3
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
1
value
Track
scoring_system
ssvc
scoring_elements
SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-04T16:33:27Z/
url
https://access.redhat.com/errata/RHSA-2026:13508
16
reference_url
https://access.redhat.com/errata/RHSA-2026:13512
reference_id
RHSA-2026:13512
reference_type
scores
0
value
8.3
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
1
value
Track
scoring_system
ssvc
scoring_elements
SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-04T16:33:27Z/
url
https://access.redhat.com/errata/RHSA-2026:13512
17
reference_url
https://access.redhat.com/errata/RHSA-2026:13545
reference_id
RHSA-2026:13545
reference_type
scores
0
value
8.3
scoring_system
cvssv3.1
scoring_elements
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
1
value
Track
scoring_system
ssvc
scoring_elements
SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-04T16:33:27Z/
url
https://access.redhat.com/errata/RHSA-2026:13545
Weaknesses
0
cwe_id
305
name
Authentication Bypass by Primary Weakness
description
The authentication algorithm is sound, but the implemented mechanism can be bypassed as the result of a separate weakness that is primary to the authentication error.
Exploits
Severity_range_score
8.3 - 8.3
Exploitability
0.5
Weighted_severity
7.5
Risk_score
3.8
Resource_url
http://public2.vulnerablecode.io/vulnerabilities/VCID-8p3a-fmau-17ad
×
Create
None
×
Edit
None