{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/111955?format=json","vulnerability_id":"VCID-hxcq-jtgk-5fdz","summary":"A flaw was found in the Red Hat Ansible Automation Platform Gateway route creation component. This vulnerability allows credential theft via the creation of misleading routes using a double-slash (//) prefix in the gateway_path. A malicious or socially engineered administrator can configure a honey-pot route to intercept and exfiltrate user credentials, potentially maintaining persistent access or creating a backdoor even after their permissions are revoked.","aliases":[{"alias":"CVE-2025-9909"}],"fixed_packages":[],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/328862?format=json","purl":"pkg:rpm/redhat/ansible-builder@3.1.1-1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-builder@3.1.1-1%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328899?format=json","purl":"pkg:rpm/redhat/ansible-builder@3.1.1-1?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-builder@3.1.1-1%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328853?format=json","purl":"pkg:rpm/redhat/ansible-creator@25.12.0-1?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-creator@25.12.0-1%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328887?format=json","purl":"pkg:rpm/redhat/ansible-creator@25.12.0-1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-creator@25.12.0-1%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328856?format=json","purl":"pkg:rpm/redhat/ansible-dev-environment@25.12.2-1.1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-dev-environment@25.12.2-1.1%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328883?format=json","purl":"pkg:rpm/redhat/ansible-dev-environment@25.12.2-1.1?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-dev-environment@25.12.2-1.1%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328863?format=json","purl":"pkg:rpm/redhat/ansible-dev-tools@25.12.0-1?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-dev-tools@25.12.0-1%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328898?format=json","purl":"pkg:rpm/redhat/ansible-dev-tools@25.12.0-1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-dev-tools@25.12.0-1%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328865?format=json","purl":"pkg:rpm/redhat/ansible-lint@25.12.0-1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-lint@25.12.0-1%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328901?format=json","purl":"pkg:rpm/redhat/ansible-lint@25.12.0-1?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-lint@25.12.0-1%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328873?format=json","purl":"pkg:rpm/redhat/ansible-navigator@25.12.0-1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-navigator@25.12.0-1%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328908?format=json","purl":"pkg:rpm/redhat/ansible-navigator@25.12.0-1?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-navigator@25.12.0-1%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328874?format=json","purl":"pkg:rpm/redhat/ansible-sign@0.1.4-1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-sign@0.1.4-1%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328909?format=json","purl":"pkg:rpm/redhat/ansible-sign@0.1.4-1?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-sign@0.1.4-1%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328852?format=json","purl":"pkg:rpm/redhat/automation-gateway@2.5.20251210-1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/automation-gateway@2.5.20251210-1%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328888?format=json","purl":"pkg:rpm/redhat/automation-gateway@2.5.20251210-1?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/automation-gateway@2.5.20251210-1%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/329453?format=json","purl":"pkg:rpm/redhat/automation-gateway@2.6.20251119-1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-hxcq-jtgk-5fdz"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/automation-gateway@2.6.20251119-1%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328868?format=json","purl":"pkg:rpm/redhat/automation-hub@4.10.10-1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/automation-hub@4.10.10-1%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328902?format=json","purl":"pkg:rpm/redhat/automation-hub@4.10.10-1?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/automation-hub@4.10.10-1%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328876?format=json","purl":"pkg:rpm/redhat/bindep@2.13.0-1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/bindep@2.13.0-1%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328911?format=json","purl":"pkg:rpm/redhat/bindep@2.13.0-1?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/bindep@2.13.0-1%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328851?format=json","purl":"pkg:rpm/redhat/molecule@25.12.0-1?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/molecule@25.12.0-1%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328886?format=json","purl":"pkg:rpm/redhat/molecule@25.12.0-1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/molecule@25.12.0-1%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328847?format=json","purl":"pkg:rpm/redhat/python3.11-ansible-compat@25.12.0-1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-ansible-compat@25.12.0-1%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328882?format=json","purl":"pkg:rpm/redhat/python3.11-ansible-compat@25.12.0-1?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-ansible-compat@25.12.0-1%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328846?format=json","purl":"pkg:rpm/redhat/python3.11-distlib@0.4.0-1?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-distlib@0.4.0-1%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328875?format=json","purl":"pkg:rpm/redhat/python3.11-distlib@0.4.0-1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-distlib@0.4.0-1%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328903?format=json","purl":"pkg:rpm/redhat/python3.11-django@4.2.26-1?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-django@4.2.26-1%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328867?format=json","purl":"pkg:rpm/redhat/python3.11-django@4.2.26-1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-django@4.2.26-1%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328881?format=json","purl":"pkg:rpm/redhat/python3.11-execnet@2.1.2-1?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-execnet@2.1.2-1%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328848?format=json","purl":"pkg:rpm/redhat/python3.11-execnet@2.1.2-1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-execnet@2.1.2-1%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328905?format=json","purl":"pkg:rpm/redhat/python3.11-galaxy-importer@0.4.36-2?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-galaxy-importer@0.4.36-2%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328864?format=json","purl":"pkg:rpm/redhat/python3.11-galaxy-importer@0.4.36-2?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-galaxy-importer@0.4.36-2%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328884?format=json","purl":"pkg:rpm/redhat/python3.11-galaxy-ng@4.10.10-1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-galaxy-ng@4.10.10-1%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328849?format=json","purl":"pkg:rpm/redhat/python3.11-galaxy-ng@4.10.10-1?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-galaxy-ng@4.10.10-1%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328854?format=json","purl":"pkg:rpm/redhat/python3.11-gunicorn@23.0.0-1?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-gunicorn@23.0.0-1%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328890?format=json","purl":"pkg:rpm/redhat/python3.11-gunicorn@23.0.0-1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-gunicorn@23.0.0-1%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328897?format=json","purl":"pkg:rpm/redhat/python3.11-pluggy@1.6.0-1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-pluggy@1.6.0-1%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328872?format=json","purl":"pkg:rpm/redhat/python3.11-pluggy@1.6.0-1?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-pluggy@1.6.0-1%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328857?format=json","purl":"pkg:rpm/redhat/python3.11-pytest@9.0.1-1?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-pytest@9.0.1-1%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328895?format=json","purl":"pkg:rpm/redhat/python3.11-pytest@9.0.1-1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-pytest@9.0.1-1%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328871?format=json","purl":"pkg:rpm/redhat/python3.11-pytest-ansible@25.12.0-1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-pytest-ansible@25.12.0-1%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328906?format=json","purl":"pkg:rpm/redhat/python3.11-pytest-ansible@25.12.0-1?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-pytest-ansible@25.12.0-1%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328885?format=json","purl":"pkg:rpm/redhat/python3.11-pytest-xdist@3.8.0-1?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-pytest-xdist@3.8.0-1%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328900?format=json","purl":"pkg:rpm/redhat/python3.11-pytest-xdist@3.8.0-1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-pytest-xdist@3.8.0-1%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328845?format=json","purl":"pkg:rpm/redhat/python3.11-ruamel-yaml-clib@0.2.15-1?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-ruamel-yaml-clib@0.2.15-1%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328879?format=json","purl":"pkg:rpm/redhat/python3.11-ruamel-yaml-clib@0.2.15-1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-ruamel-yaml-clib@0.2.15-1%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328858?format=json","purl":"pkg:rpm/redhat/python3.11-subprocess-tee@0.4.2-1?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-subprocess-tee@0.4.2-1%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328891?format=json","purl":"pkg:rpm/redhat/python3.11-subprocess-tee@0.4.2-1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-subprocess-tee@0.4.2-1%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328861?format=json","purl":"pkg:rpm/redhat/python3.11-tox-ansible@25.12.0-1.2?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-tox-ansible@25.12.0-1.2%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328896?format=json","purl":"pkg:rpm/redhat/python3.11-tox-ansible@25.12.0-1.2?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-tox-ansible@25.12.0-1.2%3Farch=el9ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328893?format=json","purl":"pkg:rpm/redhat/python3.11-typing-extensions@4.15.0-1?arch=el8ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-typing-extensions@4.15.0-1%3Farch=el8ap"},{"url":"http://public2.vulnerablecode.io/api/packages/328860?format=json","purl":"pkg:rpm/redhat/python3.11-typing-extensions@4.15.0-1?arch=el9ap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-beas-dwx6-1ffp"},{"vulnerability":"VCID-g4m2-6ftk-bbaa"},{"vulnerability":"VCID-hthz-2uar-nkht"},{"vulnerability":"VCID-hxcq-jtgk-5fdz"},{"vulnerability":"VCID-uczy-qxxa-uff1"},{"vulnerability":"VCID-vdjv-k38h-aqbt"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.11-typing-extensions@4.15.0-1%3Farch=el9ap"}],"references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-9909.json","reference_id":"","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-9909.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-9909","reference_id":"","reference_type":"","scores":[{"value":"5e-05","scoring_system":"epss","scoring_elements":"0.00272","published_at":"2026-06-12T12:55:00Z"},{"value":"5e-05","scoring_system":"epss","scoring_elements":"0.00273","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-9909"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform:2.5::el8","reference_id":"cpe:/a:redhat:ansible_automation_platform:2.5::el8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform:2.5::el8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform:2.5::el9","reference_id":"cpe:/a:redhat:ansible_automation_platform:2.5::el9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform:2.5::el9"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform:2.6::el9","reference_id":"cpe:/a:redhat:ansible_automation_platform:2.6::el9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform:2.6::el9"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_developer:2.5::el8","reference_id":"cpe:/a:redhat:ansible_automation_platform_developer:2.5::el8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_developer:2.5::el8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_developer:2.5::el9","reference_id":"cpe:/a:redhat:ansible_automation_platform_developer:2.5::el9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_developer:2.5::el9"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9","reference_id":"cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_inside:2.5::el8","reference_id":"cpe:/a:redhat:ansible_automation_platform_inside:2.5::el8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_inside:2.5::el8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_inside:2.5::el9","reference_id":"cpe:/a:redhat:ansible_automation_platform_inside:2.5::el9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_inside:2.5::el9"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_inside:2.6::el9","reference_id":"cpe:/a:redhat:ansible_automation_platform_inside:2.6::el9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ansible_automation_platform_inside:2.6::el9"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2025-9909","reference_id":"CVE-2025-9909","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-27T18:42:58Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2025-9909"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:21768","reference_id":"RHSA-2025:21768","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-27T18:42:58Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:21768"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:21775","reference_id":"RHSA-2025:21775","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-27T18:42:58Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:21775"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23069","reference_id":"RHSA-2025:23069","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-27T18:42:58Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:23069"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23131","reference_id":"RHSA-2025:23131","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-27T18:42:58Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:23131"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2392836","reference_id":"show_bug.cgi?id=2392836","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-27T18:42:58Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2392836"}],"weaknesses":[{"cwe_id":647,"name":"Use of Non-Canonical URL Paths for Authorization Decisions","description":"The product defines policy namespaces and makes authorization decisions based on the assumption that a URL is canonical. This can allow a non-canonical URL to bypass the authorization."}],"exploits":[],"severity_range_score":"6.7 - 6.7","exploitability":"0.5","weighted_severity":"6.0","risk_score":3.0,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hxcq-jtgk-5fdz"}