CVE-2025-9907 — Vulnetix

Risk Scores

CVSS v3.1

6.699999809265137

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

EPSS Score

0.01%

1.4th percentile

Affected Products

Vendor	Product	Versions
Red Hat	Red Hat Ansible Automation Platform 2.5 for RHEL 9	0:1.6.0-1.el9ap, 0:1.6.0-1.el9ap, 0:1.6.0-1.el9ap
Red Hat	Red Hat Ansible Automation Platform 2.5 for RHEL 9	0:9.0.1-1.el9ap, 0:9.0.1-1.el9ap, 0:9.0.1-1.el9ap
redhat	ansible_developer	1.2, 1.3, 1.2
Red Hat	Red Hat Ansible Automation Platform 2.5 for RHEL 9	0:3.1.1-1.el9ap, 0:3.1.1-1.el9ap, 0:3.1.1-1.el9ap
redhat	ansible_automation_platform	0, 0, 0
Red Hat	Red Hat Ansible Automation Platform 2.5 for RHEL 8	0:23.0.0-1.el8ap, 0:23.0.0-1.el8ap, 0:23.0.0-1.el8ap
Red Hat	Red Hat Ansible Automation Platform 2.5 for RHEL 9	0:25.12.0-1.el9ap, 0:25.12.0-1.el9ap, 0:25.12.0-1.el9ap
Red Hat	Red Hat Ansible Automation Platform 2.5 for RHEL 8	0:4.10.10-1.el8ap, 0:4.10.10-1.el8ap, 0:4.10.10-1.el8ap
Red Hat	Red Hat Ansible Automation Platform 2.5 for RHEL 8	0:1.1.14-1.el8ap, 0:1.1.14-1.el8ap, 0:1.1.14-1.el8ap
Red Hat	Red Hat Ansible Automation Platform 2.5 for RHEL 9	0:25.12.0-1.el9ap, 0:25.12.0-1.el9ap, 0:25.12.0-1.el9ap
Red Hat	Red Hat Ansible Automation Platform 2.5 for RHEL 8	0:4.10.10-1.el8ap, 0:4.10.10-1.el8ap, 0:4.10.10-1.el8ap
Red Hat	Red Hat Ansible Automation Platform 2.5 for RHEL 8	0:0.4.2-1.el8ap, 0:0.4.2-1.el8ap, 0:0.4.2-1.el8ap
Red Hat	Red Hat Ansible Automation Platform 2.5	sha256:07673470fb62db8bec12ec20b2500228c0c6d5108916dd936d91e10610b783d1, sha256:07673470fb62db8bec12ec20b2500228c0c6d5108916dd936d91e10610b783d1, sha256:07673470fb62db8bec12ec20b2500228c0c6d5108916dd936d91e10610b783d1
Red Hat	Red Hat Ansible Automation Platform 2.5 for RHEL 8	0:4.15.0-1.el8ap, 0:4.15.0-1.el8ap, 0:4.15.0-1.el8ap
Red Hat	Red Hat Ansible Automation Platform 2.5 for RHEL 9	0:23.0.0-1.el9ap, 0:23.0.0-1.el9ap, 0:23.0.0-1.el9ap
Red Hat	Red Hat Ansible Automation Platform 2.5 for RHEL 8	0:0.4.36-2.el8ap, 0:0.4.36-2.el8ap, 0:0.4.36-2.el8ap
Red Hat	Red Hat Ansible Automation Platform 2.5 for RHEL 9	0:3.8.0-1.el9ap, 0:3.8.0-1.el9ap, 0:3.8.0-1.el9ap
Red Hat	Red Hat Ansible Automation Platform 2.5 for RHEL 8	0:3.8.0-1.el8ap, 0:3.8.0-1.el8ap, 0:3.8.0-1.el8ap
Red Hat	Red Hat Ansible Automation Platform 2.5 for RHEL 9	0:4.15.0-1.el9ap, 0:4.15.0-1.el9ap, 0:4.15.0-1.el9ap
redhat	ansible_inside	1.4, 1.4, 1.3

…and 38 more

Timeline

Sep 3, 2025 CVE ID Reserved
Feb 27, 2026 EPSS Score
Feb 27, 2026 CVE Published
Feb 27, 2026 PoC Published
Feb 28, 2026 EPSS Score
Feb 28, 2026 CVE Updated
Mar 1, 2026 EPSS Score
Mar 2, 2026 EPSS Score
Mar 3, 2026 EPSS Score
Mar 3, 2026 Distribution Patch
Mar 3, 2026 Distribution Patch
Mar 3, 2026 Distribution Patch

References

https://access.redhat.com/errata/RHSA-2025:19201 url
https://access.redhat.com/errata/RHSA-2025:19221 url
https://access.redhat.com/errata/RHSA-2025:23069 url
RHSA-2025:23131 vendor-advisory
https://access.redhat.com/security/cve/CVE-2025-9907 vdb
RHBZ#2392834 issue
https://nvd.nist.gov/vuln/detail/CVE-2025-9907 advisory

Open in Interactive Console →