Red Hat Security Advisory: Red Hat Ansible Automation Platform Execution Environments Container Release Update
A moderate severity vulnerability (CVE-2024-11079) affects Red Hat Ansible Automation Platform Execution Environments. The issue involves an unsafe tagging bypass via the hostvars object in ansible-core, which could impact how automation tasks are executed. Red Hat has released updated versions of ansible-core across multiple streams (2. 15. 13, 2. 16. 14, 2. 17. 7, and 2. 18.
AI Analysis
Technical Summary
CVE-2024-11079 is a vulnerability in Red Hat Ansible Automation Platform's ansible-core component, specifically an unsafe tagging bypass via the hostvars object. This flaw could allow unintended behavior in automation execution environments by bypassing expected tagging controls. Red Hat has issued updates to ansible-core in several execution environment streams to remediate this issue. The advisory (RHSA-2024:10770) confirms the availability of these updates and classifies the severity as moderate.
Potential Impact
The vulnerability could allow bypassing tagging restrictions in Ansible automation tasks, potentially leading to unintended execution flows or privilege escalation within automation workflows. However, no known exploits have been reported in the wild, and the impact is considered moderate based on the vendor's classification.
Mitigation Recommendations
Red Hat has released official updates to ansible-core that address this vulnerability. Users of Red Hat Ansible Automation Platform Execution Environments should upgrade to the fixed versions: 2.15.13, 2.16.14, 2.17.7, or 2.18.1 depending on their stream. Applying these updates will remediate the unsafe tagging bypass issue. Patch status is confirmed by the vendor advisory RHSA-2024:10770.
Red Hat Security Advisory: Red Hat Ansible Automation Platform Execution Environments Container Release Update
Description
A moderate severity vulnerability (CVE-2024-11079) affects Red Hat Ansible Automation Platform Execution Environments. The issue involves an unsafe tagging bypass via the hostvars object in ansible-core, which could impact how automation tasks are executed. Red Hat has released updated versions of ansible-core across multiple streams (2. 15. 13, 2. 16. 14, 2. 17. 7, and 2. 18.
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2024-11079 is a vulnerability in Red Hat Ansible Automation Platform's ansible-core component, specifically an unsafe tagging bypass via the hostvars object. This flaw could allow unintended behavior in automation execution environments by bypassing expected tagging controls. Red Hat has issued updates to ansible-core in several execution environment streams to remediate this issue. The advisory (RHSA-2024:10770) confirms the availability of these updates and classifies the severity as moderate.
Potential Impact
The vulnerability could allow bypassing tagging restrictions in Ansible automation tasks, potentially leading to unintended execution flows or privilege escalation within automation workflows. However, no known exploits have been reported in the wild, and the impact is considered moderate based on the vendor's classification.
Mitigation Recommendations
Red Hat has released official updates to ansible-core that address this vulnerability. Users of Red Hat Ansible Automation Platform Execution Environments should upgrade to the fixed versions: 2.15.13, 2.16.14, 2.17.7, or 2.18.1 depending on their stream. Applying these updates will remediate the unsafe tagging bypass issue. Patch status is confirmed by the vendor advisory RHSA-2024:10770.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2024:10770
- Cve Count
- 1
- Additional Cves
- []
- Cvss Version
- null
Threat ID: 6a1f4e8de29bf47b500852bf
Added to database: 6/2/2026, 9:43:41 PM
Last enriched: 6/2/2026, 10:20:11 PM
Last updated: 6/3/2026, 5:09:44 AM
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.