Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Product Security and Bug Fix Update
Red Hat Ansible Automation Platform 2. 5 has multiple security vulnerabilities addressed in a recent update. These include a Jinja sandbox breakout via the attr filter selecting the format method (CVE-2025-27516) and a potential denial-of-service vulnerability in django. utils. text. wrap() (CVE-2025-26699). The update also includes various bug fixes and component updates. The vulnerabilities have been rated with an important security impact by Red Hat. No known exploits in the wild have been reported at this time.
AI Analysis
Technical Summary
Red Hat released a security advisory (RHSA-2025:3160) for Ansible Automation Platform 2.5 addressing two main vulnerabilities: a Jinja2 sandbox breakout (CVE-2025-27516) affecting the automation-controller and python3.11-jinja2 components, and a potential denial-of-service vulnerability (CVE-2025-26699) in the django.utils.text.wrap() function within python3.11-django. The advisory includes updates to multiple components such as automation-controller (4.6.10), automation-gateway, automation-hub, and python3.11-django (4.2.20) among others. These fixes mitigate the identified security issues and improve platform stability and functionality.
Potential Impact
The Jinja sandbox breakout vulnerability (CVE-2025-27516) could allow an attacker to escape the sandbox restrictions in Jinja templates, potentially leading to unauthorized code execution or information disclosure within the Ansible Automation Platform environment. The denial-of-service vulnerability (CVE-2025-26699) in Django could allow an attacker to cause a denial of service by exploiting the text wrapping function. These vulnerabilities affect Red Hat Ansible Automation Platform 2.5 and related components, potentially impacting the confidentiality, integrity, and availability of automation workflows if exploited.
Mitigation Recommendations
Red Hat has released an official security update (RHSA-2025:3160) that addresses these vulnerabilities. Users of Red Hat Ansible Automation Platform 2.5 should apply the provided updates, including automation-controller 4.6.10, python3.11-django 4.2.20, and python3.11-jinja2 3.1.6, as soon as possible to remediate these issues. The advisory does not indicate any required additional mitigations beyond applying the official patches.
Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Product Security and Bug Fix Update
Description
Red Hat Ansible Automation Platform 2. 5 has multiple security vulnerabilities addressed in a recent update. These include a Jinja sandbox breakout via the attr filter selecting the format method (CVE-2025-27516) and a potential denial-of-service vulnerability in django. utils. text. wrap() (CVE-2025-26699). The update also includes various bug fixes and component updates. The vulnerabilities have been rated with an important security impact by Red Hat. No known exploits in the wild have been reported at this time.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
Red Hat released a security advisory (RHSA-2025:3160) for Ansible Automation Platform 2.5 addressing two main vulnerabilities: a Jinja2 sandbox breakout (CVE-2025-27516) affecting the automation-controller and python3.11-jinja2 components, and a potential denial-of-service vulnerability (CVE-2025-26699) in the django.utils.text.wrap() function within python3.11-django. The advisory includes updates to multiple components such as automation-controller (4.6.10), automation-gateway, automation-hub, and python3.11-django (4.2.20) among others. These fixes mitigate the identified security issues and improve platform stability and functionality.
Potential Impact
The Jinja sandbox breakout vulnerability (CVE-2025-27516) could allow an attacker to escape the sandbox restrictions in Jinja templates, potentially leading to unauthorized code execution or information disclosure within the Ansible Automation Platform environment. The denial-of-service vulnerability (CVE-2025-26699) in Django could allow an attacker to cause a denial of service by exploiting the text wrapping function. These vulnerabilities affect Red Hat Ansible Automation Platform 2.5 and related components, potentially impacting the confidentiality, integrity, and availability of automation workflows if exploited.
Mitigation Recommendations
Red Hat has released an official security update (RHSA-2025:3160) that addresses these vulnerabilities. Users of Red Hat Ansible Automation Platform 2.5 should apply the provided updates, including automation-controller 4.6.10, python3.11-django 4.2.20, and python3.11-jinja2 3.1.6, as soon as possible to remediate these issues. The advisory does not indicate any required additional mitigations beyond applying the official patches.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2025:3160
- Cve Count
- 2
- Additional Cves
- ["CVE-2025-27516"]
- Cvss Version
- null
Threat ID: 6a1f4e89e29bf47b500838dc
Added to database: 6/2/2026, 9:43:37 PM
Last enriched: 6/2/2026, 10:18:33 PM
Last updated: 6/3/2026, 5:06:33 AM
Views: 3
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.