RHSA-2026:0629
Vulnerability from csaf_redhat - Published: 2026-01-14 19:31 - Updated: 2026-01-14 22:22Summary
Red Hat Security Advisory: satellite/foreman-mcp-server-rhel9 container image available as a Technology Preview
Notes
Topic
A new satellite/foreman-mcp-server-rhel9 container image is now available as a Technology Preview in the Red Hat container registry.
Details
Satellite provides a container image that you can use to run an MCP server locally. The MCP server for Satellite is designed for advanced reporting and data analysis that leverages AI capabilities. You can use it to generate dynamic and comprehensive reports from your Satellite inventory.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A new satellite/foreman-mcp-server-rhel9 container image is now available as a Technology Preview in the Red Hat container registry.",
"title": "Topic"
},
{
"category": "general",
"text": "Satellite provides a container image that you can use to run an MCP server locally. The MCP server for Satellite is designed for advanced reporting and data analysis that leverages AI capabilities. You can use it to generate dynamic and comprehensive reports from your Satellite inventory. ",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:0629",
"url": "https://access.redhat.com/errata/RHSA-2026:0629"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_satellite/6.18/html/updating_red_hat_satellite/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_satellite/6.18/html/updating_red_hat_satellite/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-62706",
"url": "https://access.redhat.com/security/cve/CVE-2025-62706"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-66416",
"url": "https://access.redhat.com/security/cve/CVE-2025-66416"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://catalog.redhat.com/software/containers/search",
"url": "https://catalog.redhat.com/software/containers/search"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_satellite/6.18/html-single/managing_hosts/index#configuring-the-mcp-server-for-Satellite",
"url": "https://docs.redhat.com/en/documentation/red_hat_satellite/6.18/html-single/managing_hosts/index#configuring-the-mcp-server-for-Satellite"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_0629.json"
}
],
"title": "Red Hat Security Advisory: satellite/foreman-mcp-server-rhel9 container image available as a Technology Preview",
"tracking": {
"current_release_date": "2026-01-14T22:22:42+00:00",
"generator": {
"date": "2026-01-14T22:22:42+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.15"
}
},
"id": "RHSA-2026:0629",
"initial_release_date": "2026-01-14T19:31:51+00:00",
"revision_history": [
{
"date": "2026-01-14T19:31:51+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-01-14T19:31:59+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-01-14T22:22:42+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Satellite 6.18",
"product": {
"name": "Red Hat Satellite 6.18",
"product_id": "Red Hat Satellite 6.18",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite:6.18::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Satellite"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/satellite/foreman-mcp-server-rhel9@sha256:1d79cdb237d1d245131c9daea04ddf1c056551ab18e422b4ea4f63cf438c1212_amd64",
"product": {
"name": "registry.redhat.io/satellite/foreman-mcp-server-rhel9@sha256:1d79cdb237d1d245131c9daea04ddf1c056551ab18e422b4ea4f63cf438c1212_amd64",
"product_id": "registry.redhat.io/satellite/foreman-mcp-server-rhel9@sha256:1d79cdb237d1d245131c9daea04ddf1c056551ab18e422b4ea4f63cf438c1212_amd64",
"product_identification_helper": {
"purl": "pkg:oci/foreman-mcp-server-rhel9@sha256%3A1d79cdb237d1d245131c9daea04ddf1c056551ab18e422b4ea4f63cf438c1212?arch=amd64\u0026repository_url=registry.redhat.io/satellite\u0026tag=1767868827"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/satellite/foreman-mcp-server-rhel9@sha256:1d79cdb237d1d245131c9daea04ddf1c056551ab18e422b4ea4f63cf438c1212_amd64 as a component of Red Hat Satellite 6.18",
"product_id": "Red Hat Satellite 6.18:registry.redhat.io/satellite/foreman-mcp-server-rhel9@sha256:1d79cdb237d1d245131c9daea04ddf1c056551ab18e422b4ea4f63cf438c1212_amd64"
},
"product_reference": "registry.redhat.io/satellite/foreman-mcp-server-rhel9@sha256:1d79cdb237d1d245131c9daea04ddf1c056551ab18e422b4ea4f63cf438c1212_amd64",
"relates_to_product_reference": "Red Hat Satellite 6.18"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-62706",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-10-22T22:01:31.800574+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2405946"
}
],
"notes": [
{
"category": "description",
"text": "Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to version 1.6.5, Authlib\u2019s JWE zip=DEF path performs unbounded DEFLATE decompression. A very small ciphertext can expand into tens or hundreds of megabytes on decrypt, allowing an attacker who can supply decryptable tokens to exhaust memory and CPU and cause denial of service. This issue has been patched in version 1.6.5. Workarounds for this issue involve rejecting or stripping zip=DEF for inbound JWEs at the application boundary, forking and add a bounded decompression guard via decompressobj().decompress(data, MAX_SIZE)) and returning an error when output exceeds a safe limit, or enforcing strict maximum token sizes and fail fast on oversized inputs; combine with rate limiting.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "authlib: Authlib : JWE zip=DEF decompression bomb enables DoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Satellite 6.18:registry.redhat.io/satellite/foreman-mcp-server-rhel9@sha256:1d79cdb237d1d245131c9daea04ddf1c056551ab18e422b4ea4f63cf438c1212_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-62706"
},
{
"category": "external",
"summary": "RHBZ#2405946",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2405946"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-62706",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-62706"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-62706",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-62706"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/commit/e0863d5129316b1790eee5f14cece32a03b8184d",
"url": "https://github.com/authlib/authlib/commit/e0863d5129316b1790eee5f14cece32a03b8184d"
},
{
"category": "external",
"summary": "https://github.com/authlib/authlib/security/advisories/GHSA-g7f3-828f-7h7m",
"url": "https://github.com/authlib/authlib/security/advisories/GHSA-g7f3-828f-7h7m"
}
],
"release_date": "2025-10-22T21:31:10.997000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-01-14T19:31:51+00:00",
"details": "For Satellite MCP integration see the Red Hat Satellite documentation.",
"product_ids": [
"Red Hat Satellite 6.18:registry.redhat.io/satellite/foreman-mcp-server-rhel9@sha256:1d79cdb237d1d245131c9daea04ddf1c056551ab18e422b4ea4f63cf438c1212_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:0629"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Satellite 6.18:registry.redhat.io/satellite/foreman-mcp-server-rhel9@sha256:1d79cdb237d1d245131c9daea04ddf1c056551ab18e422b4ea4f63cf438c1212_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Satellite 6.18:registry.redhat.io/satellite/foreman-mcp-server-rhel9@sha256:1d79cdb237d1d245131c9daea04ddf1c056551ab18e422b4ea4f63cf438c1212_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "authlib: Authlib : JWE zip=DEF decompression bomb enables DoS"
},
{
"cve": "CVE-2025-66416",
"cwe": {
"id": "CWE-1188",
"name": "Initialization of a Resource with an Insecure Default"
},
"discovery_date": "2025-12-02T19:01:33.806874+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418445"
}
],
"notes": [
{
"category": "description",
"text": "The MCP Python SDK, called `mcp` on PyPI, is a Python implementation of the Model Context Protocol (MCP). Prior to version 1.23.0, tThe Model Context Protocol (MCP) Python SDK does not enable DNS rebinding protection by default for HTTP-based servers. When an HTTP-based MCP server is run on localhost without authentication using FastMCP with streamable HTTP or SSE transport, and has not configured TransportSecuritySettings, a malicious website could exploit DNS rebinding to bypass same-origin policy restrictions and send requests to the local MCP server. This could allow an attacker to invoke tools or access resources exposed by the MCP server on behalf of the user in those limited circumstances. Note that running HTTP-based MCP servers locally without authentication is not recommended per MCP security best practices. This issue does not affect servers using stdio transport. This vulnerability is fixed in 1.23.0.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "mcp: DNS Rebinding Protection Disabled by Default in Model Context Protocol Python SDK",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Satellite 6.18:registry.redhat.io/satellite/foreman-mcp-server-rhel9@sha256:1d79cdb237d1d245131c9daea04ddf1c056551ab18e422b4ea4f63cf438c1212_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-66416"
},
{
"category": "external",
"summary": "RHBZ#2418445",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418445"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-66416",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66416"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-66416",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66416"
},
{
"category": "external",
"summary": "https://github.com/modelcontextprotocol/python-sdk/commit/d3a184119e4479ea6a63590bc41f01dc06e3fa99",
"url": "https://github.com/modelcontextprotocol/python-sdk/commit/d3a184119e4479ea6a63590bc41f01dc06e3fa99"
},
{
"category": "external",
"summary": "https://github.com/modelcontextprotocol/python-sdk/security/advisories/GHSA-9h52-p55h-vw2f",
"url": "https://github.com/modelcontextprotocol/python-sdk/security/advisories/GHSA-9h52-p55h-vw2f"
}
],
"release_date": "2025-12-02T18:14:28.310000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-01-14T19:31:51+00:00",
"details": "For Satellite MCP integration see the Red Hat Satellite documentation.",
"product_ids": [
"Red Hat Satellite 6.18:registry.redhat.io/satellite/foreman-mcp-server-rhel9@sha256:1d79cdb237d1d245131c9daea04ddf1c056551ab18e422b4ea4f63cf438c1212_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:0629"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Satellite 6.18:registry.redhat.io/satellite/foreman-mcp-server-rhel9@sha256:1d79cdb237d1d245131c9daea04ddf1c056551ab18e422b4ea4f63cf438c1212_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Satellite 6.18:registry.redhat.io/satellite/foreman-mcp-server-rhel9@sha256:1d79cdb237d1d245131c9daea04ddf1c056551ab18e422b4ea4f63cf438c1212_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "mcp: DNS Rebinding Protection Disabled by Default in Model Context Protocol Python SDK"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…