Description
A flaw was found in foreman-mcp-server. This component utilizes two distinct logging mechanisms that can expose sensitive session and authentication data. One mechanism logs session identifiers, which are treated as authentication credentials, at an informational level. The other, when debug logging is enabled, incompletely sanitizes HTTP request headers, leading to the cleartext logging of sensitive information such as authorization tokens and API keys. This vulnerability can result in a confidentiality breach, as sensitive authentication data is persisted in plain text within container logs, increasing the risk if logs are forwarded to a centralized platform.
Published: 2026-06-23
Score: 6.2 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability lies in foreman‑mcp‑server logging mechanisms that do not properly protect sensitive data, representing a CWE-532 weakness of inappropriate logging. Session identifiers are logged at an informational level and, when debug mode is enabled, HTTP headers containing authorization tokens or API keys are written to logs without full sanitization. As a result, authentication data can be captured in straight‑text form in container logs, creating a risk of confidentiality loss if those logs are accessed or forwarded to external systems.

Affected Systems

Red Hat Satellite 6, specifically the foreman‑mcp‑server component. No further version details are provided, but any deployment of this component in Satellite 6 is potentially affected.

Risk and Exploitability

The CVSS score of 6.2 indicates a moderate risk. The EPSS score is not available, and the vulnerability is not listed in CISA KEV, implying limited active exploitation data. The primary risk manifests when logs are stored or forwarded to centralized platforms; an attacker who gains access to these logs could obtain session IDs or authorization credentials. Exposing authentication data in logs increases the likelihood of credential compromise, especially if logs are not adequately protected or if debug logging is inadvertently enabled.

Generated by OpenCVE AI on June 24, 2026 at 03:24 UTC.

Remediation

Vendor Workaround

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

OpenCVE Recommended Actions

  • Disable debug logging for foreman‑mcp‑server whenever it is not required for troubleshooting.
  • Modify the logging configuration so that sensitive HTTP headers are either omitted or stripped before logs are written to disk.
  • Restrict access to log files and ensure that any forwarding to centralized log collectors sanitizes sensitive headers or applies strict access controls.
  • No workaround meets Red Hat Product Security criteria; per Red Hat guidance, monitor advisories for official updates.

Generated by OpenCVE AI on June 24, 2026 at 03:24 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 24 Jun 2026 02:30:00 +0000

Type Values Removed Values Added
CPEs cpe:/a:redhat:satellite:6 cpe:/a:redhat:satellite:6.19::el9
References

Wed, 24 Jun 2026 00:15:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

 threat_severity

Moderate

Tue, 23 Jun 2026 20:30:00 +0000

Type Values Removed Values Added
Description A flaw was found in foreman-mcp-server. This component utilizes two distinct logging mechanisms that can expose sensitive session and authentication data. One mechanism logs session identifiers, which are treated as authentication credentials, at an informational level. The other, when debug logging is enabled, incompletely sanitizes HTTP request headers, leading to the cleartext logging of sensitive information such as authorization tokens and API keys. This vulnerability can result in a confidentiality breach, as sensitive authentication data is persisted in plain text within container logs, increasing the risk if logs are forwarded to a centralized platform.
Title Foreman-mcp-server: mcp server: insecure sensitive http header sanitization
First Time appeared Redhat
Redhat satellite
Weaknesses CWE-532
CPEs cpe:/a:redhat:satellite:6
Vendors & Products Redhat
Redhat satellite
References
Metrics cvssV3_1

{'score': 6.2, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N'}

Subscriptions

Redhat Satellite
cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2026-06-24T01:56:29.186Z

Reserved: 2026-05-20T12:18:07.910Z

Link: CVE-2026-9073

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-06-23T12:34:00Z

Links: CVE-2026-9073 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-06-24T03:30:05Z

Weaknesses
  • CWE-532

    Insertion of Sensitive Information into Log File