CVE-2025-1801 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A flaw was found in the Ansible aap-gateway. Concurrent requests handled by the gateway grpc service can result in concurrency issues due to race condition requ…
High CVSS: 8.1

CVE-2025-1801

A flaw was found in the Ansible aap-gateway. Concurrent requests handled by the gateway grpc service can result in concurrency issues due to race condition requests against the proxy. This issue potentially allows a less privileged user to obtain the JWT of a greater privileged user, enabling the server to be jeopardized. A user session or confidential data might be vulnerable.
Vendor
-
Product
-
CWE
CWE-362
Yayın Tarihi
2025-03-03 15:15:16
Güncelleme
2025-03-03 15:15:16
Source Identifier
secalert@redhat.com
KEV Date Added
-

Kategoriler

CWE-362 HIGH 2025

Referanslar

https://access.redhat.com/errata/RHSA-2025:1954 https://access.redhat.com/security/cve/CVE-2025-1801 https://bugzilla.redhat.com/show_bug.cgi?id=2349081