{}

{}

{}

{"bugzilla": {"description": "event-driven-ansible: Sensitive Internal Headers Disclosure in AAP EDA Event Streams", "id": "2392835", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2392835"}, "csaw": false, "cvss3": {"cvss3_base_score": "6.7", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "status": "draft"}, "cwe": "CWE-200", "details": ["No description is available for this CVE."], "mitigation": {"lang": "en:us", "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."}, "name": "CVE-2025-9908", "package_state": [{"cpe": "cpe:/a:redhat:ansible_automation_platform:2", "fix_state": "Affected", "package_name": "event-driven-ansible", "product_name": "Red Hat Ansible Automation Platform 2"}], "public_date": "2025-09-17T23:59:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2025-9908\nhttps://nvd.nist.gov/vuln/detail/CVE-2025-9908"], "statement": "This issue is classified as Moderate because the exposure of sensitive internal headers, including X-Trusted-Proxy and X-Envoy-* values, can lead to privilege escalation, request spoofing, and unauthorized access to internal infrastructure details. Exploitation requires low-complexity conditions and local access\u2014any user with an EDA credential or shared access to a job template and event stream can capture these headers once an event is sent. The persistence of captured headers further increases risk, as sensitive values remain accessible to the attacker until explicitly cleared.", "threat_severity": "Moderate"}