CVE-2025-10725

Sažetak

A flaw was found in Red Hat Openshift AI Service. A low-privileged attacker with access to an authenticated account, for example as a data scientist using a standard Jupyter notebook, can escalate their privileges to a full cluster administrator. This allows for the complete compromise of the cluster's confidentiality, integrity, and availability. The attacker can steal sensitive data, disrupt all services, and take control of the underlying infrastructure, leading to a total breach of the platform and all applications hosted on it.

Reference

https://access.redhat.com/errata/RHSA-2025:16981
https://access.redhat.com/errata/RHSA-2025:16982
https://access.redhat.com/errata/RHSA-2025:16983
https://access.redhat.com/errata/RHSA-2025:16984
https://access.redhat.com/errata/RHSA-2025:17501
https://access.redhat.com/security/cve/CVE-2025-10725
https://bugzilla.redhat.com/show_bug.cgi?id=2396641

CVSS

Base:	9.9
Impact:	6.0
Exploitability:	3.1

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	LOW

Impact

Povjerljivost	Cjelovitost	Dostupnost
HIGH	HIGH	HIGH

CVSS vektor

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Zadnje važnije ažuriranje

06-11-2025 - 22:15

Objavljeno

30-09-2025 - 18:15