CVE-2026-9073 Red Hat CVE debrief

Who should care

Security teams and administrators responsible for foreman-mcp-server instances should be aware of this vulnerability. They should assess their exposure and take necessary actions to mitigate the risk. Red Hat users may find additional information in the provided errata and security advisories.

Technical summary

The foreman-mcp-server component has two logging mechanisms that can expose sensitive data. The first logs session identifiers as authentication credentials at an informational level. The second, when debug logging is enabled, does not properly sanitize HTTP request headers, leading to cleartext logging of sensitive information like authorization tokens and API keys. This can cause a confidentiality breach, especially if logs are forwarded to a centralized platform. The vulnerability has a CVSS score of 6.2 and a MEDIUM severity level.

Defensive priority

Apply patches or updates to foreman-mcp-server to fix the logging issue. Review and adjust logging configurations to minimize exposure of sensitive information.

Recommended defensive actions

• Apply patches or updates to foreman-mcp-server to fix the logging issue.
• Review and adjust logging configurations to minimize exposure of sensitive information.
• Ensure logs are not forwarded to a centralized platform in plain text.
• Consider implementing additional logging security measures, such as encryption or access controls.
• Monitor for any suspicious activity related to foreman-mcp-server logs.

Evidence notes

The CVE-2026-9073 record was published on June 23, 2026, and last modified on June 25, 2026. The vulnerability affects foreman-mcp-server, but specific affected versions or configurations are not provided in the available information. The CVSS score is 6.2, indicating a MEDIUM severity level. Red Hat has provided errata and security advisories related to this vulnerability.

Official resources