rhsa-2025:16982
Vulnerability from csaf_redhat
Published
2025-09-29 17:16
Modified
2025-11-07 00:15
Summary
Red Hat Security Advisory: RHOAI 2.22.2 - Red Hat OpenShift AI
Notes
Topic
Updated images are now available for Red Hat OpenShift AI.
Details
Release of RHOAI 2.22.2 provides these changes:
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat OpenShift AI.",
"title": "Topic"
},
{
"category": "general",
"text": "Release of RHOAI 2.22.2 provides these changes:",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:16982",
"url": "https://access.redhat.com/errata/RHSA-2025:16982"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_openshift_ai/",
"url": "https://docs.redhat.com/en/documentation/red_hat_openshift_ai/"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/cve-2025-10725",
"url": "https://access.redhat.com/security/cve/cve-2025-10725"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/cve-2025-57852",
"url": "https://access.redhat.com/security/cve/cve-2025-57852"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_16982.json"
}
],
"title": "Red Hat Security Advisory: RHOAI 2.22.2 - Red Hat OpenShift AI",
"tracking": {
"current_release_date": "2025-11-07T00:15:03+00:00",
"generator": {
"date": "2025-11-07T00:15:03+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.11"
}
},
"id": "RHSA-2025:16982",
"initial_release_date": "2025-09-29T17:16:15+00:00",
"revision_history": [
{
"date": "2025-09-29T17:16:15+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-10-03T13:01:16+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-07T00:15:03+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift AI 2.22",
"product": {
"name": "Red Hat OpenShift AI 2.22",
"product_id": "Red Hat OpenShift AI 2.22",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_ai:2.22::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift AI"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:06fe7562f0e0fb7c67b45792b26afe322a20943d6e6ca3ad8398d355cc9d98a8_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:06fe7562f0e0fb7c67b45792b26afe322a20943d6e6ca3ad8398d355cc9d98a8_amd64",
"product_id": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:06fe7562f0e0fb7c67b45792b26afe322a20943d6e6ca3ad8398d355cc9d98a8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-dashboard-rhel9@sha256%3A06fe7562f0e0fb7c67b45792b26afe322a20943d6e6ca3ad8398d355cc9d98a8?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.22.2-1758733209"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:1709fa3c79aad4ba7eb9be8299949396092c8e20210124e0c0936385bc04e839_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:1709fa3c79aad4ba7eb9be8299949396092c8e20210124e0c0936385bc04e839_amd64",
"product_id": "registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:1709fa3c79aad4ba7eb9be8299949396092c8e20210124e0c0936385bc04e839_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-modelmesh-rhel9@sha256%3A1709fa3c79aad4ba7eb9be8299949396092c8e20210124e0c0936385bc04e839?arch=amd64\u0026repository_url=registry.redhat.io/rhoai"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-operator-bundle@sha256:e87a96c8a61042e83b8db0194adf3fd84c3a311b1f3793345a35bfd0e7ea56d9_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-operator-bundle@sha256:e87a96c8a61042e83b8db0194adf3fd84c3a311b1f3793345a35bfd0e7ea56d9_amd64",
"product_id": "registry.redhat.io/rhoai/odh-operator-bundle@sha256:e87a96c8a61042e83b8db0194adf3fd84c3a311b1f3793345a35bfd0e7ea56d9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-operator-bundle@sha256%3Ae87a96c8a61042e83b8db0194adf3fd84c3a311b1f3793345a35bfd0e7ea56d9?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.22.2-1758799703"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:dccc7c6cf920da7ffeadbad42f5727f2d58d54ceef399ac98441345d06ff10c4_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:dccc7c6cf920da7ffeadbad42f5727f2d58d54ceef399ac98441345d06ff10c4_amd64",
"product_id": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:dccc7c6cf920da7ffeadbad42f5727f2d58d54ceef399ac98441345d06ff10c4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-rhel9-operator@sha256%3Adccc7c6cf920da7ffeadbad42f5727f2d58d54ceef399ac98441345d06ff10c4?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.22.2-1758779769"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:59a7d1e7659e3a61e93483e07abaa5b8a7d71e83a3aa50d50d02b0240990a1d1_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:59a7d1e7659e3a61e93483e07abaa5b8a7d71e83a3aa50d50d02b0240990a1d1_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:59a7d1e7659e3a61e93483e07abaa5b8a7d71e83a3aa50d50d02b0240990a1d1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-dashboard-rhel9@sha256%3A59a7d1e7659e3a61e93483e07abaa5b8a7d71e83a3aa50d50d02b0240990a1d1?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.22.2-1758733209"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:57b12c6c6ed0a9f6af1388df3b8f60bbd82d3e4add1928b9578fa91ff24f570c_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:57b12c6c6ed0a9f6af1388df3b8f60bbd82d3e4add1928b9578fa91ff24f570c_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:57b12c6c6ed0a9f6af1388df3b8f60bbd82d3e4add1928b9578fa91ff24f570c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-rhel9-operator@sha256%3A57b12c6c6ed0a9f6af1388df3b8f60bbd82d3e4add1928b9578fa91ff24f570c?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.22.2-1758779769"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:f5ba47942ae56bc2aaef8eb1f4dbb7336d3c7902e8100f9e8e91c1d2a23be9af_s390x",
"product": {
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:f5ba47942ae56bc2aaef8eb1f4dbb7336d3c7902e8100f9e8e91c1d2a23be9af_s390x",
"product_id": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:f5ba47942ae56bc2aaef8eb1f4dbb7336d3c7902e8100f9e8e91c1d2a23be9af_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odh-dashboard-rhel9@sha256%3Af5ba47942ae56bc2aaef8eb1f4dbb7336d3c7902e8100f9e8e91c1d2a23be9af?arch=s390x\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.22.2-1758733209"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:b4363d661ec4a58f870d0a6b88b75063eeab3384d79cbb71b1836eb186b17516_s390x",
"product": {
"name": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:b4363d661ec4a58f870d0a6b88b75063eeab3384d79cbb71b1836eb186b17516_s390x",
"product_id": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:b4363d661ec4a58f870d0a6b88b75063eeab3384d79cbb71b1836eb186b17516_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odh-rhel9-operator@sha256%3Ab4363d661ec4a58f870d0a6b88b75063eeab3384d79cbb71b1836eb186b17516?arch=s390x\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.22.2-1758779769"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:790ede593c00add9f70e453f6cf2858ec6a120732569f74d6eb8592b4ba85382_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:790ede593c00add9f70e453f6cf2858ec6a120732569f74d6eb8592b4ba85382_arm64",
"product_id": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:790ede593c00add9f70e453f6cf2858ec6a120732569f74d6eb8592b4ba85382_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-dashboard-rhel9@sha256%3A790ede593c00add9f70e453f6cf2858ec6a120732569f74d6eb8592b4ba85382?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.22.2-1758733209"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:3136acf5957bf1ca41662e095f161acb60efbbc94acaaa98c592487ed3ab7aa8_arm64",
"product": {
"name": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:3136acf5957bf1ca41662e095f161acb60efbbc94acaaa98c592487ed3ab7aa8_arm64",
"product_id": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:3136acf5957bf1ca41662e095f161acb60efbbc94acaaa98c592487ed3ab7aa8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odh-rhel9-operator@sha256%3A3136acf5957bf1ca41662e095f161acb60efbbc94acaaa98c592487ed3ab7aa8?arch=arm64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.22.2-1758779769"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:06fe7562f0e0fb7c67b45792b26afe322a20943d6e6ca3ad8398d355cc9d98a8_amd64 as a component of Red Hat OpenShift AI 2.22",
"product_id": "Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:06fe7562f0e0fb7c67b45792b26afe322a20943d6e6ca3ad8398d355cc9d98a8_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:06fe7562f0e0fb7c67b45792b26afe322a20943d6e6ca3ad8398d355cc9d98a8_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.22"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:59a7d1e7659e3a61e93483e07abaa5b8a7d71e83a3aa50d50d02b0240990a1d1_ppc64le as a component of Red Hat OpenShift AI 2.22",
"product_id": "Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:59a7d1e7659e3a61e93483e07abaa5b8a7d71e83a3aa50d50d02b0240990a1d1_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:59a7d1e7659e3a61e93483e07abaa5b8a7d71e83a3aa50d50d02b0240990a1d1_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.22"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:790ede593c00add9f70e453f6cf2858ec6a120732569f74d6eb8592b4ba85382_arm64 as a component of Red Hat OpenShift AI 2.22",
"product_id": "Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:790ede593c00add9f70e453f6cf2858ec6a120732569f74d6eb8592b4ba85382_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:790ede593c00add9f70e453f6cf2858ec6a120732569f74d6eb8592b4ba85382_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.22"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:f5ba47942ae56bc2aaef8eb1f4dbb7336d3c7902e8100f9e8e91c1d2a23be9af_s390x as a component of Red Hat OpenShift AI 2.22",
"product_id": "Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:f5ba47942ae56bc2aaef8eb1f4dbb7336d3c7902e8100f9e8e91c1d2a23be9af_s390x"
},
"product_reference": "registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:f5ba47942ae56bc2aaef8eb1f4dbb7336d3c7902e8100f9e8e91c1d2a23be9af_s390x",
"relates_to_product_reference": "Red Hat OpenShift AI 2.22"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:1709fa3c79aad4ba7eb9be8299949396092c8e20210124e0c0936385bc04e839_amd64 as a component of Red Hat OpenShift AI 2.22",
"product_id": "Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:1709fa3c79aad4ba7eb9be8299949396092c8e20210124e0c0936385bc04e839_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:1709fa3c79aad4ba7eb9be8299949396092c8e20210124e0c0936385bc04e839_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.22"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-operator-bundle@sha256:e87a96c8a61042e83b8db0194adf3fd84c3a311b1f3793345a35bfd0e7ea56d9_amd64 as a component of Red Hat OpenShift AI 2.22",
"product_id": "Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-operator-bundle@sha256:e87a96c8a61042e83b8db0194adf3fd84c3a311b1f3793345a35bfd0e7ea56d9_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-operator-bundle@sha256:e87a96c8a61042e83b8db0194adf3fd84c3a311b1f3793345a35bfd0e7ea56d9_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.22"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:3136acf5957bf1ca41662e095f161acb60efbbc94acaaa98c592487ed3ab7aa8_arm64 as a component of Red Hat OpenShift AI 2.22",
"product_id": "Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:3136acf5957bf1ca41662e095f161acb60efbbc94acaaa98c592487ed3ab7aa8_arm64"
},
"product_reference": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:3136acf5957bf1ca41662e095f161acb60efbbc94acaaa98c592487ed3ab7aa8_arm64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.22"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:57b12c6c6ed0a9f6af1388df3b8f60bbd82d3e4add1928b9578fa91ff24f570c_ppc64le as a component of Red Hat OpenShift AI 2.22",
"product_id": "Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:57b12c6c6ed0a9f6af1388df3b8f60bbd82d3e4add1928b9578fa91ff24f570c_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:57b12c6c6ed0a9f6af1388df3b8f60bbd82d3e4add1928b9578fa91ff24f570c_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.22"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:b4363d661ec4a58f870d0a6b88b75063eeab3384d79cbb71b1836eb186b17516_s390x as a component of Red Hat OpenShift AI 2.22",
"product_id": "Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:b4363d661ec4a58f870d0a6b88b75063eeab3384d79cbb71b1836eb186b17516_s390x"
},
"product_reference": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:b4363d661ec4a58f870d0a6b88b75063eeab3384d79cbb71b1836eb186b17516_s390x",
"relates_to_product_reference": "Red Hat OpenShift AI 2.22"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:dccc7c6cf920da7ffeadbad42f5727f2d58d54ceef399ac98441345d06ff10c4_amd64 as a component of Red Hat OpenShift AI 2.22",
"product_id": "Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:dccc7c6cf920da7ffeadbad42f5727f2d58d54ceef399ac98441345d06ff10c4_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-rhel9-operator@sha256:dccc7c6cf920da7ffeadbad42f5727f2d58d54ceef399ac98441345d06ff10c4_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.22"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Raul Bringas",
"Jon Weiser",
"Oleg Sushchenko"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2025-10725",
"cwe": {
"id": "CWE-266",
"name": "Incorrect Privilege Assignment"
},
"discovery_date": "2025-09-19T08:42:33.326000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:06fe7562f0e0fb7c67b45792b26afe322a20943d6e6ca3ad8398d355cc9d98a8_amd64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:59a7d1e7659e3a61e93483e07abaa5b8a7d71e83a3aa50d50d02b0240990a1d1_ppc64le",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:790ede593c00add9f70e453f6cf2858ec6a120732569f74d6eb8592b4ba85382_arm64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:f5ba47942ae56bc2aaef8eb1f4dbb7336d3c7902e8100f9e8e91c1d2a23be9af_s390x",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:1709fa3c79aad4ba7eb9be8299949396092c8e20210124e0c0936385bc04e839_amd64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-operator-bundle@sha256:e87a96c8a61042e83b8db0194adf3fd84c3a311b1f3793345a35bfd0e7ea56d9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2396641"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Red Hat Openshift AI Service. A low-privileged attacker with access to an authenticated account, for example as a data scientist using a standard Jupyter notebook, can escalate their privileges to a full cluster administrator. This allows for the complete compromise of the cluster\u0027s confidentiality, integrity, and availability. The attacker can steal sensitive data, disrupt all services, and take control of the underlying infrastructure, leading to a total breach of the platform and all applications hosted on it.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openshift-ai: Overly Permissive ClusterRole Allows Authenticated Users to Escalate Privileges to Cluster Admin",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Security Ratings classify this as an Important and not Critical because it requires minimal authentication for the remote attacker to jeopardize an environment. Following https://access.redhat.com/security/updates/classification",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:3136acf5957bf1ca41662e095f161acb60efbbc94acaaa98c592487ed3ab7aa8_arm64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:57b12c6c6ed0a9f6af1388df3b8f60bbd82d3e4add1928b9578fa91ff24f570c_ppc64le",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:b4363d661ec4a58f870d0a6b88b75063eeab3384d79cbb71b1836eb186b17516_s390x",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:dccc7c6cf920da7ffeadbad42f5727f2d58d54ceef399ac98441345d06ff10c4_amd64"
],
"known_not_affected": [
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:06fe7562f0e0fb7c67b45792b26afe322a20943d6e6ca3ad8398d355cc9d98a8_amd64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:59a7d1e7659e3a61e93483e07abaa5b8a7d71e83a3aa50d50d02b0240990a1d1_ppc64le",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:790ede593c00add9f70e453f6cf2858ec6a120732569f74d6eb8592b4ba85382_arm64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:f5ba47942ae56bc2aaef8eb1f4dbb7336d3c7902e8100f9e8e91c1d2a23be9af_s390x",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:1709fa3c79aad4ba7eb9be8299949396092c8e20210124e0c0936385bc04e839_amd64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-operator-bundle@sha256:e87a96c8a61042e83b8db0194adf3fd84c3a311b1f3793345a35bfd0e7ea56d9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-10725"
},
{
"category": "external",
"summary": "RHBZ#2396641",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2396641"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-10725",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-10725"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-10725",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-10725"
}
],
"release_date": "2025-09-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-29T17:16:15+00:00",
"details": "For Red Hat OpenShift AI 2.22.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_ai/",
"product_ids": [
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:3136acf5957bf1ca41662e095f161acb60efbbc94acaaa98c592487ed3ab7aa8_arm64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:57b12c6c6ed0a9f6af1388df3b8f60bbd82d3e4add1928b9578fa91ff24f570c_ppc64le",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:b4363d661ec4a58f870d0a6b88b75063eeab3384d79cbb71b1836eb186b17516_s390x",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:dccc7c6cf920da7ffeadbad42f5727f2d58d54ceef399ac98441345d06ff10c4_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:16982"
},
{
"category": "workaround",
"details": "RHOAI versions 2.16.x\n\nThe recommended fix is to upgrade to version 2.16.3.\nHowever, if Kueue features are not required, the Kueue component management state can be set to \"Removed\" in the RHOAI DataScienceCluster resource:\n\n~~~\noc patch dsc default-dsc --type=merge -p=\u0027{\"spec\":{\"components\":{\"kueue\":{\"managementState\":\"Removed\"}}}}\u0027 -n redhat-ods-operator\n~~~\n\n\nRHOAI versions 2.19+\n\nThe recommended fix is to apply the available erratum.\nAlternatively, follow these steps:\n1. Prevent the RHOAI operator from managing the kueue-batch-user-rolebinding by applying the necessary annotation:\n~~~\noc patch clusterrolebinding kueue-batch-user-rolebinding -p \u0027{\"metadata\":{\"annotations\": \\{\"opendatahub.io/managed\":\"false\"}}}\u0027\n~~~\n\n2. Disable the ClusterRoleBinding by updating its subject to a different, non-existent, group:\n~~~\noc patch clusterrolebinding kueue-batch-user-rolebinding \\\n -p \u0027{\n \"subjects\": [\n {\n \"kind\": \"Group\",\n \"name\": \"REPLACEME\",\n \"apiGroup\": \"rbac.authorization.k8s.io\"\n }\n ]\n }\u0027\n~~~\n\nIt is important that the group used for the subject does not exist on the cluster to prevent the risk of unintentionally assigning these permissions to other non-privileged users.\n\n3. Once updates providing fixes have been applied, it\u0027s recommended to remove the clusterrolebinding created in step 2 of the mitigation.\n~~~\noc delete clusterrolebinding kueue-batch-user-rolebinding\n~~~",
"product_ids": [
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:06fe7562f0e0fb7c67b45792b26afe322a20943d6e6ca3ad8398d355cc9d98a8_amd64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:59a7d1e7659e3a61e93483e07abaa5b8a7d71e83a3aa50d50d02b0240990a1d1_ppc64le",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:790ede593c00add9f70e453f6cf2858ec6a120732569f74d6eb8592b4ba85382_arm64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:f5ba47942ae56bc2aaef8eb1f4dbb7336d3c7902e8100f9e8e91c1d2a23be9af_s390x",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:1709fa3c79aad4ba7eb9be8299949396092c8e20210124e0c0936385bc04e839_amd64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-operator-bundle@sha256:e87a96c8a61042e83b8db0194adf3fd84c3a311b1f3793345a35bfd0e7ea56d9_amd64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:3136acf5957bf1ca41662e095f161acb60efbbc94acaaa98c592487ed3ab7aa8_arm64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:57b12c6c6ed0a9f6af1388df3b8f60bbd82d3e4add1928b9578fa91ff24f570c_ppc64le",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:b4363d661ec4a58f870d0a6b88b75063eeab3384d79cbb71b1836eb186b17516_s390x",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:dccc7c6cf920da7ffeadbad42f5727f2d58d54ceef399ac98441345d06ff10c4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.9,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:06fe7562f0e0fb7c67b45792b26afe322a20943d6e6ca3ad8398d355cc9d98a8_amd64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:59a7d1e7659e3a61e93483e07abaa5b8a7d71e83a3aa50d50d02b0240990a1d1_ppc64le",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:790ede593c00add9f70e453f6cf2858ec6a120732569f74d6eb8592b4ba85382_arm64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:f5ba47942ae56bc2aaef8eb1f4dbb7336d3c7902e8100f9e8e91c1d2a23be9af_s390x",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:1709fa3c79aad4ba7eb9be8299949396092c8e20210124e0c0936385bc04e839_amd64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-operator-bundle@sha256:e87a96c8a61042e83b8db0194adf3fd84c3a311b1f3793345a35bfd0e7ea56d9_amd64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:3136acf5957bf1ca41662e095f161acb60efbbc94acaaa98c592487ed3ab7aa8_arm64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:57b12c6c6ed0a9f6af1388df3b8f60bbd82d3e4add1928b9578fa91ff24f570c_ppc64le",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:b4363d661ec4a58f870d0a6b88b75063eeab3384d79cbb71b1836eb186b17516_s390x",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:dccc7c6cf920da7ffeadbad42f5727f2d58d54ceef399ac98441345d06ff10c4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "openshift-ai: Overly Permissive ClusterRole Allows Authenticated Users to Escalate Privileges to Cluster Admin"
},
{
"acknowledgments": [
{
"names": [
"Michael Whale",
"Antony Di Scala"
]
}
],
"cve": "CVE-2025-57852",
"cwe": {
"id": "CWE-276",
"name": "Incorrect Default Permissions"
},
"discovery_date": "2025-08-26T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:06fe7562f0e0fb7c67b45792b26afe322a20943d6e6ca3ad8398d355cc9d98a8_amd64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:59a7d1e7659e3a61e93483e07abaa5b8a7d71e83a3aa50d50d02b0240990a1d1_ppc64le",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:790ede593c00add9f70e453f6cf2858ec6a120732569f74d6eb8592b4ba85382_arm64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:f5ba47942ae56bc2aaef8eb1f4dbb7336d3c7902e8100f9e8e91c1d2a23be9af_s390x",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-operator-bundle@sha256:e87a96c8a61042e83b8db0194adf3fd84c3a311b1f3793345a35bfd0e7ea56d9_amd64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:3136acf5957bf1ca41662e095f161acb60efbbc94acaaa98c592487ed3ab7aa8_arm64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:57b12c6c6ed0a9f6af1388df3b8f60bbd82d3e4add1928b9578fa91ff24f570c_ppc64le",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:b4363d661ec4a58f870d0a6b88b75063eeab3384d79cbb71b1836eb186b17516_s390x",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:dccc7c6cf920da7ffeadbad42f5727f2d58d54ceef399ac98441345d06ff10c4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2391105"
}
],
"notes": [
{
"category": "description",
"text": "A container privilege escalation flaw was found in KServe ModelMesh container images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected container, even as a non-root user, can leverage their membership in the root group to modify the /etc/passwd file. This could allow the attacker to add a new user with any arbitrary UID, including UID 0, leading to full root privileges within the container.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openshift-ai: privilege escalation via excessive /etc/passwd permissions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Security Ratings classify this as a Low and not Moderate in Red Hat OpenShift AI due to the restrictive SCC profile used for the ModelMesh containers. The restricted-v2 profile fully mitigates this vulnerability by dropping the SETUID and SETGID privileges, blocking the two system calls from processes within the container and preventing privilege escalation.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:1709fa3c79aad4ba7eb9be8299949396092c8e20210124e0c0936385bc04e839_amd64"
],
"known_not_affected": [
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:06fe7562f0e0fb7c67b45792b26afe322a20943d6e6ca3ad8398d355cc9d98a8_amd64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:59a7d1e7659e3a61e93483e07abaa5b8a7d71e83a3aa50d50d02b0240990a1d1_ppc64le",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:790ede593c00add9f70e453f6cf2858ec6a120732569f74d6eb8592b4ba85382_arm64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:f5ba47942ae56bc2aaef8eb1f4dbb7336d3c7902e8100f9e8e91c1d2a23be9af_s390x",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-operator-bundle@sha256:e87a96c8a61042e83b8db0194adf3fd84c3a311b1f3793345a35bfd0e7ea56d9_amd64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:3136acf5957bf1ca41662e095f161acb60efbbc94acaaa98c592487ed3ab7aa8_arm64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:57b12c6c6ed0a9f6af1388df3b8f60bbd82d3e4add1928b9578fa91ff24f570c_ppc64le",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:b4363d661ec4a58f870d0a6b88b75063eeab3384d79cbb71b1836eb186b17516_s390x",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:dccc7c6cf920da7ffeadbad42f5727f2d58d54ceef399ac98441345d06ff10c4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-57852"
},
{
"category": "external",
"summary": "RHBZ#2391105",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2391105"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-57852",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-57852"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-57852",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-57852"
}
],
"release_date": "2025-09-30T14:25:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-29T17:16:15+00:00",
"details": "For Red Hat OpenShift AI 2.22.2 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_ai/",
"product_ids": [
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:1709fa3c79aad4ba7eb9be8299949396092c8e20210124e0c0936385bc04e839_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:16982"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 5.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:06fe7562f0e0fb7c67b45792b26afe322a20943d6e6ca3ad8398d355cc9d98a8_amd64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:59a7d1e7659e3a61e93483e07abaa5b8a7d71e83a3aa50d50d02b0240990a1d1_ppc64le",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:790ede593c00add9f70e453f6cf2858ec6a120732569f74d6eb8592b4ba85382_arm64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-dashboard-rhel9@sha256:f5ba47942ae56bc2aaef8eb1f4dbb7336d3c7902e8100f9e8e91c1d2a23be9af_s390x",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-modelmesh-rhel9@sha256:1709fa3c79aad4ba7eb9be8299949396092c8e20210124e0c0936385bc04e839_amd64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-operator-bundle@sha256:e87a96c8a61042e83b8db0194adf3fd84c3a311b1f3793345a35bfd0e7ea56d9_amd64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:3136acf5957bf1ca41662e095f161acb60efbbc94acaaa98c592487ed3ab7aa8_arm64",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:57b12c6c6ed0a9f6af1388df3b8f60bbd82d3e4add1928b9578fa91ff24f570c_ppc64le",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:b4363d661ec4a58f870d0a6b88b75063eeab3384d79cbb71b1836eb186b17516_s390x",
"Red Hat OpenShift AI 2.22:registry.redhat.io/rhoai/odh-rhel9-operator@sha256:dccc7c6cf920da7ffeadbad42f5727f2d58d54ceef399ac98441345d06ff10c4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openshift-ai: privilege escalation via excessive /etc/passwd permissions"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…