RHSA-2026:28438HighCVSS 7.8
Red Hat Security Advisory: satellite/foreman-mcp-server-rhel9 container image available as a Technology Preview
🔗 CVE IDs covered (2)
📋 Description
CVE-2026-9073 — foreman-mcp-server: MCP Server: Insecure Sensitive HTTP Header Sanitization CVE-2026-12112 — foreman-mcp-server: MCP Server: Active Session Hijacking via Insecure Session State Reuse
🔗 References (7)
- selfhttps://access.redhat.com/errata/RHSA-2026:28438
- externalhttps://access.redhat.com/documentation/en-us/red_hat_satellite/6.19/html/updating_red_hat_satellite/index
- externalhttps://access.redhat.com/security/cve/CVE-2026-12112
- externalhttps://access.redhat.com/security/cve/CVE-2026-9073
- externalhttps://access.redhat.com/security/updates/classification/
- externalhttps://catalog.redhat.com/software/containers/search
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_28438.json