Detections
Analytics
RHEL 10 / 9 : Red Hat Ansible Automation Platform 2.6 Product Security and Bug Fix Update (Important) (RHSA-2026:24762)
high Nessus Plugin ID 320174
Synopsis
The remote Red Hat host is missing one or more security updates.Description
The remote Redhat Enterprise Linux 10 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:24762 advisory.Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams, while automation developers retain the freedom to write tasks that leverage existing knowledge without the overhead. Ansible Automation Platform makes it possible for users across an organization to share, vet, and manage automation content by means of a simple, powerful, and agentless language.
Security Fix(es):
* automation-controller: Cryptography: Buffer overflow via non-contiguous buffer in API (CVE-2026-39892)
* automation-controller: pyasn1 Vulnerable to Denial of Service via Unbounded Recursion (CVE-2026-30922)
* automation-gateway-proxy: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283)
* automation-gateway-proxy: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)
* automation-platform-ui: Vite: Information disclosure via WebSocket connection bypasses access control (CVE-2026-39363)
* automation-platform-ui: lodash: Arbitrary code execution via untrusted input in template imports (CVE-2026-4800)
* automation-platform-ui: node-forge: Denial of Service via infinite loop in BigInteger.modInverse() (CVE-2026-33891)
* automation-platform-ui: path-to-regexp: Denial of Service via crafted regular expressions (CVE-2026-4926)
* automation-platform-ui: Axios: Remote Code Execution via Prototype Pollution escalation (CVE-2026-40175)
* python-click/python3.12-click: Pallets Click: Arbitrary command execution via command injection in click.edit() (CVE-2026-7246)
* python3.12-cryptography: Buffer overflow via non-contiguous buffer in API (CVE-2026-39892)
* python3.12-pillow: Denial of Service via decompression bomb in FITS image processing (CVE-2026-40192)
* receptor: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283)
* receptor: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)
* receptor: Root.Chmod can follow symlinks out of the root (CVE-2026-32282)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
For details about this release, refer to the release notes listed in the References section.
Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Update the affected packages.See Also
https://access.redhat.com/security/updates/classification/#important
http://www.nessus.org/u?2242e607
http://www.nessus.org/u?89e9dbff
https://bugzilla.redhat.com/show_bug.cgi?id=2448553
https://bugzilla.redhat.com/show_bug.cgi?id=2451867
https://bugzilla.redhat.com/show_bug.cgi?id=2452450
https://bugzilla.redhat.com/show_bug.cgi?id=2453496
https://bugzilla.redhat.com/show_bug.cgi?id=2456179
https://bugzilla.redhat.com/show_bug.cgi?id=2456336
https://bugzilla.redhat.com/show_bug.cgi?id=2456338
https://bugzilla.redhat.com/show_bug.cgi?id=2456339
https://bugzilla.redhat.com/show_bug.cgi?id=2456735
https://bugzilla.redhat.com/show_bug.cgi?id=2457432
https://bugzilla.redhat.com/show_bug.cgi?id=2458856
https://bugzilla.redhat.com/show_bug.cgi?id=2464121
Plugin Details
Severity: High
ID: 320174
File Name: redhat-RHSA-2026-24762.nasl
Version: 1.1
Type: Local
Agent: unix
Family: Red Hat Local Security Checks
Published: 6/9/2026
Updated: 6/9/2026
Supported Sensors: Continuous Assessment, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: High
Score: 7.3
Vendor
Vendor Severity: Important
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 7.8
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2026-4800
CVSS v3
Risk Factor: Critical
Base Score: 9.8
Temporal Score: 8.8
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
CVSS v4
Risk Factor: High
Base Score: 8.7
Threat Score: 7.7
Threat Vector: CVSS:4.0/E:P
Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
CVSS Score Source: CVE-2026-40192
Vulnerability Information
CPE: p-cpe:/a:redhat:enterprise_linux:automation-controller-cli, p-cpe:/a:redhat:enterprise_linux:automation-controller-ui, p-cpe:/a:redhat:enterprise_linux:python3.12-pillow, p-cpe:/a:redhat:enterprise_linux:python3-click, cpe:/o:redhat:enterprise_linux:9, p-cpe:/a:redhat:enterprise_linux:automation-controller, p-cpe:/a:redhat:enterprise_linux:python3.12-cryptography, p-cpe:/a:redhat:enterprise_linux:automation-controller-server, p-cpe:/a:redhat:enterprise_linux:receptor, p-cpe:/a:redhat:enterprise_linux:automation-gateway-proxy-server, p-cpe:/a:redhat:enterprise_linux:automation-gateway-proxy, p-cpe:/a:redhat:enterprise_linux:automation-controller-venv-tower, p-cpe:/a:redhat:enterprise_linux:python3.12-click, p-cpe:/a:redhat:enterprise_linux:receptorctl, cpe:/o:redhat:enterprise_linux:10, p-cpe:/a:redhat:enterprise_linux:automation-platform-ui
Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 6/9/2026
Vulnerability Publication Date: 3/17/2026
Reference Information
CVE: CVE-2026-30922, CVE-2026-32280, CVE-2026-32282, CVE-2026-32283, CVE-2026-33891, CVE-2026-39363, CVE-2026-39892, CVE-2026-40175, CVE-2026-40192, CVE-2026-4800, CVE-2026-4926, CVE-2026-7246