- Issued:
- 2026-07-08
- Updated:
- 2026-07-08
RHSA-2026:36651 - Security Advisory
Synopsis
Red Hat Edge Manager Version 1.0.3 Security Update
Type/Severity
Security Advisory: Important
Topic
Red Hat Edge Manager Version 1.0.3 Security Update
Description
Red Hat Edge Manager (RHEM) provides simple, scalable, and security-focused
management of edge devices and applications. It supports image-mode RHEL and
container workloads that run on Podman/Docker or Kubernetes.
RHEM is now available as a standalone feature, providing greater flexibility for
edge deployments. In addition to the standalone version, RHEM continues to be
offered as a plugin for the following platforms:
- Red Hat Advanced Cluster Management (RHACM): Extends fleet management to edge
devices.
- Red Hat Ansible Automation Platform (AAP): Integrates edge management with
Ansible automation.
This integration enables organizations to optimize the management and
orchestration of their fleets of edge devices; whether its thousands of
dispersed retail point-of-sale systems or industrial machinery on remote factory
floors.
Value for customers and partners:
- This solution not only helps customers manage thousands of devices but helps
scale operations.
- To manage large-scale deployments, customers need to be able to integrate with
their existing management systems, support remote configuration and over-the-air
updates, and collect telemetry data for advanced analytics.
- Red Hat Edge Manager offers a simple and security-focused lifecycle
management, from onboarding to decommissioning of edge devices.
This complete end-to-end solution empowers organizations to gain the most value
from the fleets of devices that generate data, all from a centralized location.
Solution
See the following documentation for details on how to enable Red Hat Edge Manager and more: https://docs.redhat.com/en/documentation/red_hat_edge_manager/1.0
Affected Products
- Red Hat Edge Manager
Fixes
(none)CVEs
- CVE-2025-13465
- CVE-2025-61729
- CVE-2025-68121
- CVE-2025-69873
- CVE-2026-22029
- CVE-2026-25679
- CVE-2026-29063
- CVE-2026-32141
- CVE-2026-32280
- CVE-2026-33186
- CVE-2026-33810
- CVE-2026-33811
- CVE-2026-39821
- CVE-2026-39828
- CVE-2026-39829
- CVE-2026-39830
- CVE-2026-39832
- CVE-2026-39835
- CVE-2026-42151
- CVE-2026-42154
- CVE-2026-42508
- CVE-2026-46595
- CVE-2026-4800
- CVE-2026-4926
- CVE-2026-6322
References
- https://access.redhat.com/security/updates/classification/
- https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.15/html-single/edge_manager/index#edge-mgr-intro
- https://docs.redhat.com/en/documentation/red_hat_ansible_automation_platform/2.5/html/managing_device_fleets_with_the_red_hat_edge_manager/assembly-edge-manager-intro
amd64
| registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:7e7958da7226d0bb3b19bc1447e8545d7d96988d0bde589fbdd649e011586a95 |
| registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:9280560b3774698fbd30a1e3a14e6b57f42609bc24bbe8b025a629450b0a7927 |
| registry.redhat.io/rhem/flightctl-api-rhel9@sha256:5f754d14e660f29e18748a47cf56e3c18f656472cd93b6aff939b998f058f89d |
| registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:3a7cfaa9f3b0900827022d18f529f211361e6ba372eb8458035c4e4f0e3ae607 |
| registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:0b775738a61fe65ffbe59629fe7451eb02b1cf1c40740e5c30a33f0ff0eede2d |
| registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:6d9c18658ff3931e918eab69039751b48922c77b8c47605a6ce240bce9982568 |
| registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:b0c0550b7f3d58517cb14220f5735694ac0a581335d0197645bdcb5ad4011a81 |
| registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:51ddafb4b356eb322c05191e18b9e7e8734eb90fefc9e79f3f50310fcefc1d7f |
| registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:f1e785adb22e3d3c869eabe31f5009f8f8a928e4ad9b553a4bf254476e233e70 |
| registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:5f14b823c53919e94d6b57a5a681008a6bc0ba6ee3fd74e744c792c6df11baad |
| registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:ceb10edf040f4d60df9307758ff49f212bf950f93db6ae04d92d686d372ba8bb |
| registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:11bd15489ac98c413d610197422b504fa0fb4478f2d838b91de35e3b9380de79 |
arm64
| registry.redhat.io/rhem/flightctl-alert-exporter-rhel9@sha256:bb489e9db92d4fb9715575d079cb8ac8500efc1a53b232c08891ef0c1352a8e7 |
| registry.redhat.io/rhem/flightctl-alertmanager-proxy-rhel9@sha256:e4c9707494658435871f50c35a690d8cc4d01bf1325dc6ca9379cd40a302644a |
| registry.redhat.io/rhem/flightctl-api-rhel9@sha256:fb4fb7684ce126b8469959ed878b3a7a91884c356c9f6bfac99bd4b2f23ce6a2 |
| registry.redhat.io/rhem/flightctl-cli-artifacts-rhel9@sha256:c9aa3e4437c767e9a08731b395626b8d69ba466c7f0f1eb6245b9c19ce83e908 |
| registry.redhat.io/rhem/flightctl-db-setup-rhel9@sha256:84f67cafc98159f1308a6e35dbd4290e7cc2d946d078e98e3900d78e3eb3ccf7 |
| registry.redhat.io/rhem/flightctl-pam-issuer-rhel9@sha256:225a7daaaaf072c45225ae3f4ee793c48dd82f62334d8213872b3b022c30d44e |
| registry.redhat.io/rhem/flightctl-periodic-rhel9@sha256:0ee30ee155ff08f2a637ad7a51cb05c587761ba91ad0c261df2100b622ba509b |
| registry.redhat.io/rhem/flightctl-telemetry-gateway-rhel9@sha256:aba941ba3f928360a744e26745f34962f6ecf3d211b37d4b50bee68803c370ca |
| registry.redhat.io/rhem/flightctl-ui-rhel9@sha256:e75051d27fae381533a2fb8e8a5dd3e68700dbfea20c50f4d580705bed6e5cf8 |
| registry.redhat.io/rhem/flightctl-ui-ocp-rhel9@sha256:e8480249816c12331f27b87d9edb1b15fb8efb8cc8b86bda38750cde3e05a60e |
| registry.redhat.io/rhem/flightctl-userinfo-proxy-rhel9@sha256:636c2b9fe1b410168f9f5b8956255ef0eb6b0fd2b9247fb020ec9b50df5e5321 |
| registry.redhat.io/rhem/flightctl-worker-rhel9@sha256:4ae2d884d5b5d7caf876bbb2118b715ae632e5c4dad3d19edd15ec935e588395 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.