Red Hat Security Advisory: Satellite 6.19.2 Async Update
Red Hat Satellite 6.19.2 includes multiple security fixes addressing vulnerabilities in components such as candlepin, yggdrasil-worker-forwarder, python-pillow, python-pyjwt, and foreman. These vulnerabilities range from arbitrary code execution, authentication bypass, denial of service, information disclosure, to privilege escalation and unauthorized modification of host configurations. The advisory covers 13 CVEs with high severity, affecting system management and provisioning functionalities. The update is rated as important by Red Hat Product Security and applies to Red Hat Satellite 6.19 on x86_64 architectures. Users are advised to apply the update after ensuring all previous errata are installed.
AI Analysis
Technical Summary
This Red Hat Security Advisory (RHSA-2026:34365) addresses multiple vulnerabilities in Red Hat Satellite 6.19.2 and related components. Key fixes include arbitrary code execution via JNDI dereferencing (CVE-2026-27727), certificate validation bypass and denial of service issues in yggdrasil-worker-forwarder, authentication bypass in python-pyjwt (CVE-2026-48526), and several critical vulnerabilities in foreman such as cross-tenant SSH key disclosure (CVE-2026-5142), information disclosure (CVE-2026-5138), privilege escalation (CVE-2026-5136), and unauthorized host configuration modification due to broken access control (CVE-2026-5135). The advisory consolidates 13 CVEs affecting system management, provisioning, and security components of Red Hat Satellite. The update is classified as important and addresses security weaknesses that could lead to elevated privileges, information leaks, denial of service, and code execution. The vendor recommends applying this update after all prior errata are installed.
Potential Impact
The vulnerabilities fixed in this advisory have high security impact, including the potential for arbitrary code execution, privilege escalation to administrator level, authentication bypass, information disclosure across tenants, and denial of service conditions. Exploitation could allow attackers to execute malicious code, gain unauthorized administrative access, disclose sensitive SSH keys and configuration data, or disrupt service availability. These issues affect critical components of Red Hat Satellite's system management and provisioning infrastructure, potentially compromising the confidentiality, integrity, and availability of managed systems.
Mitigation Recommendations
Red Hat has released an updated version of Red Hat Satellite 6.19.2 that addresses these vulnerabilities. Users should apply this update promptly after ensuring all previously released errata relevant to their systems have been applied. Detailed update instructions are available in the official Red Hat Satellite documentation. No additional vendor-recommended mitigations or workarounds are specified beyond applying the official update.
Red Hat Security Advisory: Satellite 6.19.2 Async Update
Description
Red Hat Satellite 6.19.2 includes multiple security fixes addressing vulnerabilities in components such as candlepin, yggdrasil-worker-forwarder, python-pillow, python-pyjwt, and foreman. These vulnerabilities range from arbitrary code execution, authentication bypass, denial of service, information disclosure, to privilege escalation and unauthorized modification of host configurations. The advisory covers 13 CVEs with high severity, affecting system management and provisioning functionalities. The update is rated as important by Red Hat Product Security and applies to Red Hat Satellite 6.19 on x86_64 architectures. Users are advised to apply the update after ensuring all previous errata are installed.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This Red Hat Security Advisory (RHSA-2026:34365) addresses multiple vulnerabilities in Red Hat Satellite 6.19.2 and related components. Key fixes include arbitrary code execution via JNDI dereferencing (CVE-2026-27727), certificate validation bypass and denial of service issues in yggdrasil-worker-forwarder, authentication bypass in python-pyjwt (CVE-2026-48526), and several critical vulnerabilities in foreman such as cross-tenant SSH key disclosure (CVE-2026-5142), information disclosure (CVE-2026-5138), privilege escalation (CVE-2026-5136), and unauthorized host configuration modification due to broken access control (CVE-2026-5135). The advisory consolidates 13 CVEs affecting system management, provisioning, and security components of Red Hat Satellite. The update is classified as important and addresses security weaknesses that could lead to elevated privileges, information leaks, denial of service, and code execution. The vendor recommends applying this update after all prior errata are installed.
Potential Impact
The vulnerabilities fixed in this advisory have high security impact, including the potential for arbitrary code execution, privilege escalation to administrator level, authentication bypass, information disclosure across tenants, and denial of service conditions. Exploitation could allow attackers to execute malicious code, gain unauthorized administrative access, disclose sensitive SSH keys and configuration data, or disrupt service availability. These issues affect critical components of Red Hat Satellite's system management and provisioning infrastructure, potentially compromising the confidentiality, integrity, and availability of managed systems.
Mitigation Recommendations
Red Hat has released an updated version of Red Hat Satellite 6.19.2 that addresses these vulnerabilities. Users should apply this update promptly after ensuring all previously released errata relevant to their systems have been applied. Detailed update instructions are available in the official Red Hat Satellite documentation. No additional vendor-recommended mitigations or workarounds are specified beyond applying the official update.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2026:34365
- Cve Count
- 13
- Additional Cves
- ["CVE-2026-5136","CVE-2026-5138","CVE-2026-5142","CVE-2026-25679","CVE-2026-27727","CVE-2026-32280","CVE-2026-32281","CVE-2026-32282","CVE-2026-32283","CVE-2026-33810","CVE-2026-40192","CVE-2026-48526"]
- Cvss Version
- null
Threat ID: 6a46ecb927e9c7971943cb15
Added to database: 07/02/2026, 22:56:57 UTC
Last enriched: 07/02/2026, 23:12:44 UTC
Last updated: 07/03/2026, 02:51:10 UTC
Views: 3
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.