BTC $71,807
2026 Bull Run Is Building Start trading with 5% OFF all fees
Sign Up Now
BTC $71,807
Bull Run 2026 | 5% Off Fees Open your Binance account today
Sign Up

Severe Privilege Escalation Flaw Found in Red Hat OpenShift AI

  • A high-severity security flaw was found in Red Hat OpenShift AI.
  • The flaw allows authenticated, low-privileged users to gain full administrative control over the system.
  • The issue carries a CVSS score of 9.9 out of 10, indicating critical potential impact.
  • Vulnerable versions include Red Hat OpenShift AI 2.19, 2.21, and RHOAI.
  • Red Hat advises restricting broad permissions and applying the principle of least privilege for job creation rights.

A significant security vulnerability was disclosed on October 1, 2025, affecting the Red Hat OpenShift AI platform. This flaw permits attackers with an authenticated account to escalate their privileges and potentially control the entire underlying infrastructure.

- Advertisement -

The vulnerability, designated as CVE-2025-10725, has a CVSS (Common Vulnerability Scoring System) rating of 9.9 out of 10, illustrating a near-critical risk level. Red Hat classified the issue as “Important” rather than “Critical” due to the requirement that the attacker must already possess valid user credentials.

According to Red Hat, “A low-privileged attacker with access to an authenticated account, for example, as a data scientist using a standard Jupyter notebook, can escalate their privileges to a full cluster administrator.” This escalation could lead to complete compromise of the cluster’s confidentiality, integrity, and availability. Attackers may steal sensitive data, disrupt services, and take over the entire infrastructure, resulting in full platform and application breaches.

Affected software versions include Red Hat OpenShift AI 2.19, 2.21, and Red Hat OpenShift AI (RHOAI). The platform helps users manage Artificial Intelligence models across hybrid cloud environments, supporting tasks like data preparation, model training, and monitoring.

To mitigate this issue, Red Hat recommends avoiding broad permission grants to system-level groups. Specifically, it advises against associating the kueue-batch-user-role with the system:authenticated group via ClusterRoleBinding. Permissions to create jobs should be assigned more carefully and only to users or groups that need them, following the principle of least privilege.

- Advertisement -

For more details, users can visit the official security advisory on the Red Hat website here.

✅ Follow BITNEWSBOT on Telegram, Facebook, LinkedIn, X.com, and Google News for instant updates.

Previous Articles:

- Advertisement -
Ad
Altseason Is Loading. Don't watch from the sidelines.
SOL $90.51
DOGE $0.0963
LINK $9.02
SUI $1.00
5% off fees when you sign up
Start Trading
Ad
Pay Less on Every Trade. For Life.
$10K/mo volume Save $60/yr
$50K/mo volume Save $300/yr
$100K/mo volume Save $600/yr
5% off all trading fees when you sign up
Claim Your Discount

Latest News

Crypto’s $2T Crash Awaits BlackRock Shock & FOMO

Bitcoin has stabilized near $60,000 after a downturn erased $2 trillion from the crypto...

Cambridge: Ethereum Energy Intensity Low, Overall Use High

Ethereum consumes roughly 7.87 GWh annually, the second-lowest energy intensity per market value among...

Saylor and Back oppose BIP-110 fork over Bitcoin security fears

Michael Saylor and Adam Back have publicly opposed BIP-110, a temporary Bitcoin fork proposal...

China, India groups target Pakistani police in cyber espionage

Suspected China- and India-aligned threat actors targeted Pakistani law enforcement in a sustained cyber...

AMD Stock Dips 10% Amid AI Volatility Ahead of Q3 Earnings

AMD stock fell nearly 10% from $580 on June 30 to roughly $516 by...

Must Read

What Is a Sim Swap Hack?

You've likely heard the term 'sim-swap,' but do you really know what it means? It's a type of fraud that's rapidly increasing, where scammers...
Ad
Altseason Is Loading. These 4 coins are trending right now.
SOL $92.12
DOGE $0.0950
LINK $9.02
SUI $1.02
5% off spot fees when you sign up
Start Trading