Red Hat Satellite 6.18.3 Async Update Allows Unauthorized Access

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.5

Red Hat Satellite 6.18.3 Async Update Allows Unauthorized Access

RHSA-2026:2760

Summary

A vulnerability in Red Hat Satellite 6.18.3 allows an attacker to access unauthorized information. This affects systems using Satellite 6.18.3 for configuration management and software updates. To protect your systems, update to a fixed version of Red Hat Satellite as soon as possible.

What to do

Update redhat python3.12-aiohttp to version 0:3.13.3-1.el9pc.
Update redhat python3.12-aiohttp-debuginfo to version 0:3.13.3-1.el9pc.
Update redhat python3.12-aiohttp-debugsource to version 0:3.13.3-1.el9pc.
Update redhat python3.12-urllib3 to version 0:2.6.3-1.el9pc.

Affected software

Vendor	Product	Affected versions	Fix available
redhat	python3.12-aiohttp	<= 0:3.13.3-1.el9pc	0:3.13.3-1.el9pc
redhat	python3.12-aiohttp-debuginfo	<= 0:3.13.3-1.el9pc	0:3.13.3-1.el9pc
redhat	python3.12-aiohttp-debugsource	<= 0:3.13.3-1.el9pc	0:3.13.3-1.el9pc
redhat	python3.12-aiohttp	<= 0:3.13.3-1.el9pc	0:3.13.3-1.el9pc
redhat	python3.12-aiohttp-debuginfo	<= 0:3.13.3-1.el9pc	0:3.13.3-1.el9pc
redhat	python3.12-aiohttp-debugsource	<= 0:3.13.3-1.el9pc	0:3.13.3-1.el9pc
redhat	python3.12-urllib3	<= 0:2.6.3-1.el9pc	0:2.6.3-1.el9pc
redhat	python3.12-urllib3	<= 0:2.6.3-1.el9pc	0:2.6.3-1.el9pc

Original title

Red Hat Security Advisory: Satellite 6.18.3 Async Update

osv CVSS3.1 7.5

https://access.redhat.com/errata/RHSA-2026:2760 Vendor Advisory
https://access.redhat.com/security/updates/classification/#important Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2380000 Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2419467 Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2427726 Third Party Advisory
https://issues.redhat.com/browse/SAT-35237 Third Party Advisory
https://issues.redhat.com/browse/SAT-39454 Third Party Advisory
https://issues.redhat.com/browse/SAT-41521 Third Party Advisory
https://issues.redhat.com/browse/SAT-41522 Third Party Advisory
https://issues.redhat.com/browse/SAT-41523 Third Party Advisory
https://issues.redhat.com/browse/SAT-41524 Third Party Advisory
https://issues.redhat.com/browse/SAT-41525 Third Party Advisory
https://issues.redhat.com/browse/SAT-41526 Third Party Advisory
https://issues.redhat.com/browse/SAT-41527 Third Party Advisory
https://issues.redhat.com/browse/SAT-41528 Third Party Advisory
https://issues.redhat.com/browse/SAT-42125 Third Party Advisory
https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_2760.j... Vendor Advisory
https://access.redhat.com/security/cve/CVE-2025-53643 Third Party Advisory
https://www.cve.org/CVERecord?id=CVE-2025-53643 Vendor Advisory
https://nvd.nist.gov/vuln/detail/CVE-2025-53643 Vendor Advisory
https://github.com/aio-libs/aiohttp/commit/e8d774f635dc6d1cd3174d0e38891da5de0e2... Third Party Advisory
https://github.com/aio-libs/aiohttp/security/advisories/GHSA-9548-qrrj-x5pj Third Party Advisory
https://access.redhat.com/security/cve/CVE-2025-66471 Third Party Advisory
https://www.cve.org/CVERecord?id=CVE-2025-66471 Vendor Advisory
https://nvd.nist.gov/vuln/detail/CVE-2025-66471 Vendor Advisory
https://github.com/urllib3/urllib3/commit/c19571de34c47de3a766541b041637ba5f716e... Third Party Advisory
https://github.com/urllib3/urllib3/security/advisories/GHSA-2xpw-w6gg-jr37 Third Party Advisory
https://access.redhat.com/security/cve/CVE-2026-21441 Third Party Advisory
https://www.cve.org/CVERecord?id=CVE-2026-21441 Vendor Advisory
https://nvd.nist.gov/vuln/detail/CVE-2026-21441 Vendor Advisory
https://github.com/urllib3/urllib3/commit/8864ac407bba8607950025e0979c4c69bc7abc... Third Party Advisory
https://github.com/urllib3/urllib3/security/advisories/GHSA-38jv-5279-wg99 Third Party Advisory

Published: 17 Feb 2026 · Updated: 7 Mar 2026 · First seen: 6 Mar 2026