A flaw was found in the Red Hat Ansible Automation Platform, Event-Driven Ansible (EDA) Event Stream API. This vulnerability allows exposure of sensitive client credentials and internal infrastructure headers via the test_headers field when an event stream is in test mode. The possible outcome includes leakage of internal infrastructure details, accidental disclosure of user or system credentials, privilege escalation if high-value tokens are exposed, and persistent sensitive data exposure to all users with read access on the event stream.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:3.1.1-1.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:25.12.0-1.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:25.12.2-1.1.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:25.12.0-1.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:25.12.0-1.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:25.12.0-1.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:0.1.4-1.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:1.1.14-1.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:4.10.10-1.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:2.13.0-1.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:25.12.0-1.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:25.12.0-1.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:0.4.0-1.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:4.2.26-1.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:2.1.2-1.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:0.4.36-2.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:4.10.10-1.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:23.0.0-1.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:1.6.0-1.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:9.0.1-1.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:25.12.0-1.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:3.8.0-1.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:0.2.15-1.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:0.4.2-1.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:25.12.0-1.2.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 8 affected
Version Status Constraints
0:4.15.0-1.el8ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:3.1.1-1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:25.12.0-1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:25.12.2-1.1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:25.12.0-1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:25.12.0-1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:25.12.0-1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:0.1.4-1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:1.1.14-1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:4.10.10-1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:2.13.0-1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:25.12.0-1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:25.12.0-1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:0.4.0-1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:4.2.26-1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:2.1.2-1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:0.4.36-2.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:4.10.10-1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:23.0.0-1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:1.6.0-1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:9.0.1-1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:25.12.0-1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:3.8.0-1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:0.2.15-1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:0.4.2-1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:25.12.0-1.2.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 for RHEL 9 affected
Version Status Constraints
0:4.15.0-1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.6 for RHEL 9 affected
Version Status Constraints
0:1.2.1-1.el9ap unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.5 affected
Version Status Constraints
sha256:07673470fb62db8bec12ec20b2500228c0c6d5108916dd936d91e10610b783d1 unaffected < *
Red Hat Red Hat Ansible Automation Platform 2.6 affected
Version Status Constraints
sha256:142125ce7f176ce4d9755f3124714bbfd8e10a687378988761d5451bd135ca76 unaffected < *

No data.

No data.

No data.

Project Subscriptions

Vendors Products
Redhat Subscribe
Ansible Automation Platform Subscribe
Ansible Automation Platform Developer Subscribe
Ansible Automation Platform Inside Subscribe
Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

References
Link Providers
https://access.redhat.com/errata/RHSA-2025:19201 cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2025:19221 cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2025:23069 cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2025:23131 cve-icon cve-icon
https://access.redhat.com/security/cve/CVE-2025-9907 cve-icon cve-icon
https://bugzilla.redhat.com/show_bug.cgi?id=2392834 cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-9907 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-9907 cve-icon
History

Fri, 27 Feb 2026 08:00:00 +0000

Type Values Removed Values Added
Description No description is available for this CVE. A flaw was found in the Red Hat Ansible Automation Platform, Event-Driven Ansible (EDA) Event Stream API. This vulnerability allows exposure of sensitive client credentials and internal infrastructure headers via the test_headers field when an event stream is in test mode. The possible outcome includes leakage of internal infrastructure details, accidental disclosure of user or system credentials, privilege escalation if high-value tokens are exposed, and persistent sensitive data exposure to all users with read access on the event stream.
Title event-driven-ansible: Event Stream Test Mode Exposes Sensitive Headers in AAP EDA Event-driven-ansible: event stream test mode exposes sensitive headers in aap eda
First Time appeared Redhat
Redhat ansible Automation Platform
Redhat ansible Automation Platform Developer
Redhat ansible Automation Platform Inside
CPEs cpe:/a:redhat:ansible_automation_platform:2.5::el8
cpe:/a:redhat:ansible_automation_platform:2.5::el9
cpe:/a:redhat:ansible_automation_platform:2.6::el9
cpe:/a:redhat:ansible_automation_platform_developer:2.5::el8
cpe:/a:redhat:ansible_automation_platform_developer:2.5::el9
cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9
cpe:/a:redhat:ansible_automation_platform_inside:2.5::el8
cpe:/a:redhat:ansible_automation_platform_inside:2.5::el9
cpe:/a:redhat:ansible_automation_platform_inside:2.6::el9
Vendors & Products Redhat
Redhat ansible Automation Platform
Redhat ansible Automation Platform Developer
Redhat ansible Automation Platform Inside
References

Fri, 19 Sep 2025 00:15:00 +0000

Type Values Removed Values Added
Description No description is available for this CVE.
Title event-driven-ansible: Event Stream Test Mode Exposes Sensitive Headers in AAP EDA
Weaknesses CWE-200
References
Metrics threat_severity

None

 cvssV3_1

{'score': 6.7, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H'}

threat_severity

Moderate

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2026-02-27T07:29:06.070Z

Reserved: 2025-09-03T07:44:22.984Z

Link: CVE-2025-9907

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-02-27T08:17:06.703

Modified: 2026-02-27T08:17:06.703

Link: CVE-2025-9907

cve-icon Redhat

Severity : Moderate

Publid Date: 2025-09-17T23:59:00Z

Links: CVE-2025-9907 - Bugzilla

cve-icon OpenCVE Enrichment

No data.

Weaknesses