VDB
CVE-2026-0598
CVE-2026-0598
PUBLISHED
CVSS 4.199999809265137 MEDIUM
A security flaw was identified in the Ansible Lightspeed API conversation endpoints that handle AI chat interactions. The APIs do not properly verify whether a conversation identifier belongs to the authenticated user making the request. As a result, an attacker with valid credentials could access or influence conversations owned by other users. This exposes sensitive conversation data and allows unauthorized manipulation of AI-generated outputs.
EPSS 0.01% · 1.7th percentile
Risk Scores
CVSS v3.1
4.199999809265137
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N
EPSS Score
0.01%
1.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat | Red Hat Ansible Automation Platform 2 | |
| Red Hat | Red Hat Ansible Automation Platform 2 | |
| Red Hat | Red Hat Ansible Automation Platform 2 | |
| Red Hat | Red Hat Ansible Automation Platform 2 | |
| Red Hat | Red Hat Ansible Automation Platform 2 | |
| Red Hat | Red Hat Ansible Automation Platform 2 | |
| Red Hat | Red Hat Ansible Automation Platform 2 | |
| Red Hat | Red Hat Ansible Automation Platform 2 | |
| Red Hat | Red Hat Ansible Automation Platform 2 | |
| Red Hat | Red Hat Ansible Automation Platform 2 | |
| Red Hat | Red Hat Ansible Automation Platform 2 | |
| Red Hat | Red Hat Ansible Automation Platform 2 | |
| Red Hat | Red Hat Ansible Automation Platform 2 | |
| Red Hat | Red Hat Ansible Automation Platform 2 | |
| Red Hat | Red Hat Ansible Automation Platform 2 | |
| Red Hat | Red Hat Ansible Automation Platform 2 | |
| Red Hat | Red Hat Ansible Automation Platform 2 | |
| Red Hat | Red Hat Ansible Automation Platform 2 | |
| Red Hat | Red Hat Ansible Automation Platform 2 | |
| Red Hat | Red Hat Ansible Automation Platform 2 |
…and 15 more
Timeline
- Feb 6, 2026 EPSS Score
- Feb 6, 2026 CVE Published
- Feb 8, 2026 EPSS Score
- Feb 10, 2026 EPSS Score
- Feb 12, 2026 EPSS Score
- Feb 15, 2026 EPSS Score
- Feb 17, 2026 EPSS Score
- Feb 19, 2026 EPSS Score
- Feb 21, 2026 EPSS Score
- Feb 23, 2026 EPSS Score
- Feb 25, 2026 EPSS Score
- Feb 27, 2026 EPSS Score
References
- https://access.redhat.com/security/cve/CVE-2026-0598 vdb
- RHBZ#2427094 issue
- https://nvd.nist.gov/vuln/detail/CVE-2026-0598 advisory
- RHSA-2026:13545 vendor-advisory