Tag

Openshift

3 briefs RSS

Red Hat OpenShift AI odh-dashboard Kubernetes Token Disclosure (CVE-2026-5483)

CVE-2026-5483 is a high-severity vulnerability in the `odh-dashboard` component of Red Hat OpenShift AI (RHOAI) that allows for the disclosure of Kubernetes Service Account tokens through a NodeJS endpoint, potentially leading to unauthorized access to Kubernetes resources.

openshift kubernetes token-disclosure cve-2026-5483

2r 1t 1c 3w ago

high advisory

Red Hat OpenShift AI Llama Stack Unauthorized Access Vulnerability (CVE-2025-12805)

2 rules 1 TTP 2 IOCs

CVE-2025-12805 describes a flaw in Red Hat OpenShift AI (RHOAI) llama-stack-operator that allows unauthorized access to Llama Stack services in other namespaces via direct network requests due to missing NetworkPolicy restrictions, potentially enabling attackers to view or manipulate sensitive data.

openshift kubernetes networkpolicy unauthorized-access

2r 1t 2i Mar 27, 2026

medium advisory

Red Hat OpenShift GitOps Multiple Vulnerabilities

2 rules 1 TTP

An anonymous remote attacker can exploit multiple vulnerabilities in Red Hat OpenShift GitOps to manipulate data, misrepresent information, or cause a denial of service.

openshift gitops vulnerability cloud

2r 1t Mar 25, 2026