Vulnerabilities
Misconfiguration
Compliance
CVE Vulnerabilities

CVE-2025-9909

This vulnerability is marked as RESERVED by NVD. This means that the CVE-ID is reserved for future use by the CVE Numbering Authority (CNA) or a security researcher, but the details of it are not yet publicly available yet.

This page will reflect the classification results once they are available through NVD.

Any vendor information available is shown as below.

Redhat

aap-gateway: Improper Path Validation in Gateway Allows Credential Exfiltration

Mitigation

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Affected Software List

NameVendorVersion
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatansible-builder-0:3.1.1-1.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatansible-creator-0:25.12.0-1.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatansible-dev-environment-0:25.12.2-1.1.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatansible-dev-tools-0:25.12.0-1.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatansible-lint-0:25.12.0-1.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatansible-navigator-0:25.12.0-1.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatansible-sign-0:0.1.4-1.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatautomation-gateway-0:2.5.20251210-1.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatautomation-hub-0:4.10.10-1.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatbindep-0:2.13.0-1.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatmolecule-0:25.12.0-1.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatpython3.11-ansible-compat-0:25.12.0-1.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatpython3.11-distlib-0:0.4.0-1.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatpython3.11-django-0:4.2.26-1.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatpython3.11-execnet-0:2.1.2-1.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatpython3.11-galaxy-importer-0:0.4.36-2.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatpython3.11-galaxy-ng-0:4.10.10-1.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatpython3.11-gunicorn-0:23.0.0-1.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatpython3.11-pluggy-0:1.6.0-1.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatpython3.11-pytest-0:9.0.1-1.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatpython3.11-pytest-ansible-0:25.12.0-1.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatpython3.11-pytest-xdist-0:3.8.0-1.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatpython3.11-ruamel-yaml-clib-0:0.2.15-1.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatpython3.11-subprocess-tee-0:0.4.2-1.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatpython3.11-tox-ansible-0:25.12.0-1.2.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 8RedHatpython3.11-typing-extensions-0:4.15.0-1.el8ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatansible-builder-0:3.1.1-1.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatansible-creator-0:25.12.0-1.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatansible-dev-environment-0:25.12.2-1.1.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatansible-dev-tools-0:25.12.0-1.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatansible-lint-0:25.12.0-1.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatansible-navigator-0:25.12.0-1.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatansible-sign-0:0.1.4-1.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatautomation-gateway-0:2.5.20251210-1.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatautomation-hub-0:4.10.10-1.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatbindep-0:2.13.0-1.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatmolecule-0:25.12.0-1.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatpython3.11-ansible-compat-0:25.12.0-1.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatpython3.11-distlib-0:0.4.0-1.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatpython3.11-django-0:4.2.26-1.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatpython3.11-execnet-0:2.1.2-1.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatpython3.11-galaxy-importer-0:0.4.36-2.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatpython3.11-galaxy-ng-0:4.10.10-1.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatpython3.11-gunicorn-0:23.0.0-1.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatpython3.11-pluggy-0:1.6.0-1.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatpython3.11-pytest-0:9.0.1-1.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatpython3.11-pytest-ansible-0:25.12.0-1.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatpython3.11-pytest-xdist-0:3.8.0-1.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatpython3.11-ruamel-yaml-clib-0:0.2.15-1.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatpython3.11-subprocess-tee-0:0.4.2-1.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatpython3.11-tox-ansible-0:25.12.0-1.2.el9ap
Red Hat Ansible Automation Platform 2.5 for RHEL 9RedHatpython3.11-typing-extensions-0:4.15.0-1.el9ap
Red Hat Ansible Automation Platform 2.6 for RHEL 9RedHatautomation-gateway-0:2.6.20251119-1.el9ap
Red Hat Ansible Automation Platform 2.5RedHatansible-automation-platform-25/gateway-rhel8:sha256:1873ff17834c924950fc5055c75b8aa99d430cf41ade6f67ff54e31bd243493e
Red Hat Ansible Automation Platform 2.6RedHatansible-automation-platform-26/gateway-rhel9:sha256:1d46d7cb52c86446709c213cd18af2d1a8ea4a5b98f130b49416c31c4ce0f7a2
Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2026 Aqua Security Software Ltd.   Privacy Policy | Terms of Use