Linux Distros Unpatched Vulnerability : CVE-2026-11819

medium Nessus Plugin ID 325137

Synopsis

The Linux/Unix host has one or more packages installed with a vulnerability that the vendor indicates will not be patched.

Description

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available.

- Module: plugins/modules/keyring_info.py CVSS 3.1: 5.5 MEDIUM AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Issue:
The module retrieves a passphrase from the OS native keyring (GNOME Keyring, macOS Keychain, Windows Credential Manager) and places it directly into result[passphrase] with no output suppression, no no_log protection, and no documentation warning. Root Cause: Line 105 (protected):
keyring_password=dict(type=str, required=True, no_log=True) Line 127 (NOT protected):
result[passphrase] = passphrase Observed Output: { changed: false, passphrase:
MyMasterP@ssw0rd!SSH_Key_Secret } Visible via register + debug: { keyring_result: { changed: false, passphrase: MyMasterP@ssw0rd!SSH_Key_Secret } } Impact: Master passwords, SSH key passphrases and service credentials appear in all Ansible output register: keyring_result followed by debug:
var=keyring_result prints passphrase in full Ansible fact caching backends (Redis, JSON file, memcached) may persist the passphrase AWX/Tower job logs silently store the live credential Fix:
module.exit_json(changed=False, passphrase=passphrase, _ansible_no_log=True) Also add a documentation warning requiring callers to use no_log: true at the task level. PoCs Fig 1: PoC execution showing passphrase in plaintext output Fig 2: Source code showing no_log=True on input (line 105) vs unprotected output (line 127) (CVE-2026-11819)

Note that Nessus relies on the presence of the package as reported by the vendor.

Solution

There is no known solution at this time.

See Also

https://access.redhat.com/security/cve/cve-2026-11819

Plugin Details

Severity: Medium

ID: 325137

File Name: unpatched_CVE_2026_11819.nasl

Version: 1.1

Type: Local

Agent: unix

Family: Misc.

Published: 7/6/2026

Updated: 7/6/2026

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3

Percentile: 23.73

CVSS v2

Risk Factor: Medium

Base Score: 6.4

Temporal Score: 5.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N

CVSS Score Source: CVE-2026-11819

CVSS v3

Risk Factor: Medium

Base Score: 5.5

Temporal Score: 5.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Temporal Vector: CVSS:3.0/E:U/RL:U/RC:C

Vulnerability Information

CPE: cpe:/o:redhat:enterprise_linux:8, cpe:/o:centos:centos:8, p-cpe:/a:redhat:enterprise_linux:rhc-worker-playbook, cpe:/o:redhat:enterprise_linux:10, p-cpe:/a:centos:centos:rhc-worker-playbook, p-cpe:/a:centos:centos:rhel-system-roles, p-cpe:/a:redhat:enterprise_linux:rhel-system-roles

Required KB Items: Host/cpu, Host/local_checks_enabled, global_settings/vendor_unpatched, Host/OS/identifier

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 6/23/2026

Reference Information

CVE: CVE-2026-11819