What is RHSA-2026:6291?

RHSA-2026:6291 is a security advisory published by Red Hat Product Security with High severity. Red Hat Security Advisory: General availability of the satellite/iop-advisor-backend-rhel9 container image

Which CVE IDs does RHSA-2026:6291 cover?

RHSA-2026:6291 covers the following CVE IDs: CVE-2026-1312, CVE-2025-14550, CVE-2026-1207, CVE-2026-1285, CVE-2026-1287. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of RHSA-2026:6291?

RHSA-2026:6291 has a CVSS v3 base score of 8.5, published by Red Hat Product Security.

RHSA-2026:6291HighCVSS 8.5

Red Hat Security Advisory: General availability of the satellite/iop-advisor-backend-rhel9 container image

Vendor

Red Hat Product Security

Published

March 31, 2026

Last Modified

May 28, 2026

🔗 CVE IDs covered (5)

CVE-2026-1312 →CVE-2025-14550 →CVE-2026-1207 →CVE-2026-1285 →CVE-2026-1287 →

📋 Description

CVE-2025-14550 — Django: Django: Denial of Service via crafted request with duplicate headers CVE-2026-1207 — Django: Django: SQL Injection via RasterField band index parameter CVE-2026-1285 — Django: Django: Denial of Service via crafted HTML inputs CVE-2026-1287 — Django: Django: SQL Injection via crafted column aliases CVE-2026-1312 — Django: Django: SQL injection via crafted column aliases in QuerySet.order_by()

🔗 References (12)

selfhttps://access.redhat.com/errata/RHSA-2026:6291
externalhttps://access.redhat.com/documentation/en-us/red_hat_satellite/6.18/html/updating_red_hat_satellite/index
externalhttps://access.redhat.com/security/cve/CVE-2025-14550
externalhttps://access.redhat.com/security/cve/CVE-2026-1207
externalhttps://access.redhat.com/security/cve/CVE-2026-1285
externalhttps://access.redhat.com/security/cve/CVE-2026-1287
externalhttps://access.redhat.com/security/cve/CVE-2026-1312
externalhttps://access.redhat.com/security/updates/classification/
externalhttps://catalog.redhat.com/software/containers/search
externalhttps://docs.redhat.com/en/documentation/red_hat_satellite/6.18/html/installing_satellite_server_in_a_connected_network_environment/performing-additional-configuration-on-server_satellite#installing-and-configuring-red-hat-lightspeed-in-satellite
externalhttps://docs.redhat.com/en/documentation/red_hat_satellite/6.18/html/installing_satellite_server_in_a_disconnected_network_environment/performing-additional-configuration#installing-and-configuring-red-hat-lightspeed-in-satellite
selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_6291.json