Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
6.7
Red Hat Ansible EDA Event Streams: Sensitive Data Exposure
CVE-2025-9908
Summary
An authenticated user can access internal infrastructure details and event stream URLs, potentially allowing them to make fake requests, gain extra privileges, or inject malicious events. This could lead to unauthorized access and system compromise. Users should update their Red Hat Ansible EDA Event Streams to the latest version to fix this issue.
Original title
A flaw was found in the Red Hat Ansible Automation Platform, Event-Driven Ansible (EDA) Event Streams. This vulnerability allows an authenticated user to gain access to sensitive internal infrastru...
Original description
A flaw was found in the Red Hat Ansible Automation Platform, Event-Driven Ansible (EDA) Event Streams. This vulnerability allows an authenticated user to gain access to sensitive internal infrastructure headers (such as X-Trusted-Proxy and X-Envoy-*) and event stream URLs via crafted requests and job templates. By exfiltrating these headers, an attacker could spoof trusted requests, escalate privileges, or perform malicious event injection.
nvd CVSS3.1
6.7
Vulnerability type
CWE-200
Information Exposure
- https://access.redhat.com/errata/RHSA-2025:19201
- https://access.redhat.com/errata/RHSA-2025:19221
- https://access.redhat.com/errata/RHSA-2025:23069
- https://access.redhat.com/errata/RHSA-2025:23131
- https://access.redhat.com/security/cve/CVE-2025-9908
- https://bugzilla.redhat.com/show_bug.cgi?id=2392835
Published: 27 Feb 2026 · Updated: 12 Mar 2026 · First seen: 6 Mar 2026