CVE-2026-12515 Red Hat CVE debrief

Who should care

Red Hat Satellite administrators, security teams managing Red Hat Satellite, and users with edit_products permissions in Katello should be aware of this vulnerability. Although it doesn't allow content modification, it could be used to gather information about repository contents.

Technical summary

The vulnerability is caused by inadequate authorization checks in Katello's ContentUploadsController. Specifically, users with the edit_products permission can query content information for repositories outside their authorized management scope. This could potentially be exploited by authenticated attackers to determine the existence of specific content in otherwise inaccessible repositories. The issue has a CVSS score of 4.3 and is classified as CWE-862 (Missing Authorization).

Defensive priority

Medium

Recommended defensive actions

• Review and restrict edit_products permissions to ensure only authorized users have this capability.
• Monitor repository access logs for unusual query patterns.
• Implement additional access controls to limit repository content information disclosure.
• Apply patches or updates provided by Red Hat as soon as available.
• Consider implementing a Web Application Firewall (WAF) to detect and prevent exploitation attempts.
• Conduct regular security audits to identify and address potential authorization issues.

Evidence notes

The information provided is based on data from the National Vulnerability Database (NVD) and Red Hat security advisories. The CVE record and NVD detail pages were referenced in compiling this debrief. Additional information was sourced from Red Hat's security CVE page and a Bugzilla entry related to this issue.

Official resources