What is CVE-2025-2877?

CVE-2025-2877 is a medium-severity vulnerability in Red Hat Ansible Automation Platform 2.4 For Rhel 8, classified under CWE-1295. CVSS score: 6.5/10. Published 2025-03-28.

How severe is CVE-2025-2877?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Vulnerability in Red Hat Ansible Automation Platform 2.4 For Rhel 8

CVE-2025-2877

A flaw was found in the Ansible Automation Platform's Event-Driven Ansible. In configurations where verbosity is set to "debug", inventory passwords are exposed in plain text when starting a rulebook activation. This issue exists for any "…

EPSS: 0.002 (47.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N.

Affected products

Red Hat Ansible Automation Platform 2.4 For Rhel 8 — versions 0:1.0.8-2.el8ap
Red Hat Ansible Automation Platform 2.4 For Rhel 9 — versions 0:1.0.8-2.el9ap
Red Hat Ansible Automation Platform 2.5 For Rhel 8 — versions 0:1.1.4-2.el8ap
Red Hat Ansible Automation Platform 2.5 For Rhel 9 — versions 0:1.1.4-2.el9ap

Weakness classification (CWE)

CWE-1295

References

RHSA-2025:3636 (vendor-advisory, x_refsource_REDHAT)
RHSA-2025:3637 (vendor-advisory, x_refsource_REDHAT)
access.redhat.com/security/cve/CVE-2025-2877 (vdb-entry, x_refsource_REDHAT)
RHBZ#2355540 (issue-tracking, x_refsource_REDHAT)
github.com/ansible/ansible-rulebook/pull/767

Frequently asked questions

What is CVE-2025-2877?: CVE-2025-2877 is a medium-severity vulnerability in Red Hat Ansible Automation Platform 2.4 For Rhel 8, classified under CWE-1295. CVSS score: 6.5/10. Published 2025-03-28.
How severe is CVE-2025-2877?: Medium severity. CVSS v3 base score is 6.5 out of 10.