Ansible-Automation-Platform-26 Eda-Controller-Rhel9 vulnerabilities

CVE-2026-41140 [LOW] CWE-22 poetry: python: Poetry: Path traversal vulnerability allows arbitrary file write via malicious package extraction poetry: python: Poetry: Path traversal vulnerability allows arbitrary file write via malicious package extraction A flaw was found in Poetry, a dependency manager for Python. This vulnerability allows a remote attacker to perform a path traversal attack. By crafting a malicious software package, the `extractall()` function in Poetry can be tricked into wr

CVE-2026-41988 [LOW] CWE-787 uuid: uuid: Unexpected data writes when using external output buffers with specific UUID versions uuid: uuid: Unexpected data writes when using external output buffers with specific UUID versions A flaw was found in uuid. When external output buffers are used with UUID versions 3, 5, or 6, an attacker with local access may be able to cause unexpected data writes. This vulnerability could lead to low impact data integrity issues. UUID version 4 is not affected. Pack