Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Product Security and Bug Fix Update
A security update for Red Hat Ansible Automation Platform 2. 5 addresses a moderate severity vulnerability identified as CVE-2025-26791. This vulnerability is a mutation-based Cross-Site Scripting (XSS) issue in the automation-gateway component caused by improper handling of template literals in DOMPurify. The update includes a fix for this vulnerability along with multiple bug fixes and improvements across the platform components. No known exploits in the wild have been reported. The update is available for affected Red Hat Ansible Automation Platform 2. 5 versions on RHEL 8 and 9.
AI Analysis
Technical Summary
Red Hat Ansible Automation Platform 2.5 contains a moderate severity security vulnerability (CVE-2025-26791) in the automation-gateway component. The issue is a mutation XSS vulnerability due to improper template literal handling in DOMPurify, a client-side sanitization library. This could allow injection of malicious scripts if exploited. The vendor has released an update (automation-gateway 2.5.20250312) that addresses this vulnerability along with various bug fixes and enhancements across the platform, including automation controller, event-driven Ansible, receptor, and container-based components. The advisory does not provide a CVSS score but rates the impact as moderate. No evidence of exploitation in the wild is reported. The update is available for Red Hat Ansible Automation Platform 2.5 on RHEL 8 and 9 architectures.
Potential Impact
The vulnerability could allow an attacker to perform Cross-Site Scripting (XSS) attacks via the automation-gateway component by exploiting improper sanitization in DOMPurify. This may lead to execution of malicious scripts in the context of a user's browser session interacting with the gateway. The overall security impact is rated moderate by Red Hat. There are no known exploits in the wild at this time.
Mitigation Recommendations
Red Hat has released an official security update for Ansible Automation Platform 2.5 that fixes the mutation XSS vulnerability in automation-gateway. Users should apply the update to automation-gateway version 2.5.20250312 and related component updates as provided by Red Hat. Since this is an official fix, applying the update fully mitigates the vulnerability. No additional vendor-recommended mitigations or workarounds are indicated.
Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Product Security and Bug Fix Update
Description
A security update for Red Hat Ansible Automation Platform 2. 5 addresses a moderate severity vulnerability identified as CVE-2025-26791. This vulnerability is a mutation-based Cross-Site Scripting (XSS) issue in the automation-gateway component caused by improper handling of template literals in DOMPurify. The update includes a fix for this vulnerability along with multiple bug fixes and improvements across the platform components. No known exploits in the wild have been reported. The update is available for affected Red Hat Ansible Automation Platform 2. 5 versions on RHEL 8 and 9.
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
Red Hat Ansible Automation Platform 2.5 contains a moderate severity security vulnerability (CVE-2025-26791) in the automation-gateway component. The issue is a mutation XSS vulnerability due to improper template literal handling in DOMPurify, a client-side sanitization library. This could allow injection of malicious scripts if exploited. The vendor has released an update (automation-gateway 2.5.20250312) that addresses this vulnerability along with various bug fixes and enhancements across the platform, including automation controller, event-driven Ansible, receptor, and container-based components. The advisory does not provide a CVSS score but rates the impact as moderate. No evidence of exploitation in the wild is reported. The update is available for Red Hat Ansible Automation Platform 2.5 on RHEL 8 and 9 architectures.
Potential Impact
The vulnerability could allow an attacker to perform Cross-Site Scripting (XSS) attacks via the automation-gateway component by exploiting improper sanitization in DOMPurify. This may lead to execution of malicious scripts in the context of a user's browser session interacting with the gateway. The overall security impact is rated moderate by Red Hat. There are no known exploits in the wild at this time.
Mitigation Recommendations
Red Hat has released an official security update for Ansible Automation Platform 2.5 that fixes the mutation XSS vulnerability in automation-gateway. Users should apply the update to automation-gateway version 2.5.20250312 and related component updates as provided by Red Hat. Since this is an official fix, applying the update fully mitigates the vulnerability. No additional vendor-recommended mitigations or workarounds are indicated.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2025:2518
- Cve Count
- 1
- Additional Cves
- []
- Cvss Version
- null
Threat ID: 6a1f4e86e29bf47b5007f8c5
Added to database: 6/2/2026, 9:43:34 PM
Last enriched: 6/2/2026, 10:01:33 PM
Last updated: 6/3/2026, 5:04:41 AM
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.