Red Hat OpenShift AI privilege escalation flaw (CVE-2025-10725)
Vulnerability
Summary
Hide ▲
Show ▼
CVE-2025-10725 exposes Red Hat OpenShift AI to privilege escalation: a low-privileged authenticated user can reach full cluster administrator access and total platform compromise. The flaw affects OpenShift AI 2.19 and 2.21 and carries a CVSS 9.9/10.0 score. Red Hat has issued mitigations that restrict broad permissions and system-level group access.
Related Happenings
Linux distributions mitigation advisories for CVE-2026-31431
Advisory/Mitigation
First: 30.04.2026 12:24
Last: 30.04.2026 12:24
Sources 1
About this happening:
Multiple **Linux distributions** released advisories for **CVE-2026-31431**, adding mitigation guidance for a **Linux kernel local privilege escalation** that can let an unprivile...
Linux distributions mitigation advisories for CVE-2026-31431
Advisory/MitigationAbout this happening: Multiple **Linux distributions** released advisories for **CVE-2026-31431**, adding mitigation guidance for a **Linux kernel local privilege escalation** that can let an unprivile...
CISA KEV listing for Wing FTP CVE-2025-47813
Public Sector Action
First: 17.03.2026 07:23
Last: 17.03.2026 07:23
Sources 1
About this happening:
CISA added **CVE-2025-47813** in **Wing FTP Server** to the **KEV catalog** after evidence of **active exploitation**, putting the flaw under formal government tracking. The listi...
CISA KEV listing for Wing FTP CVE-2025-47813
Public Sector ActionAbout this happening: CISA added **CVE-2025-47813** in **Wing FTP Server** to the **KEV catalog** after evidence of **active exploitation**, putting the flaw under formal government tracking. The listi...
CISA KEV multi-product active exploitation wave (CVE-2020-7796)
Exploitation Wave
First: 18.02.2026 08:52
Last: 18.02.2026 08:52
Sources 1
About this happening:
**CISA** expanded its **KEV catalog** with **four actively exploited flaws**, signaling a live exploitation wave across **Chrome, TeamT5 ThreatSonar, Zimbra, and Windows Video Act...
CISA KEV multi-product active exploitation wave (CVE-2020-7796)
Exploitation WaveAbout this happening: **CISA** expanded its **KEV catalog** with **four actively exploited flaws**, signaling a live exploitation wave across **Chrome, TeamT5 ThreatSonar, Zimbra, and Windows Video Act...
CISA KEV remediation deadline for SolarWinds WHD CVE-2025-40551
Public Sector Action
First: 04.02.2026 07:50
Last: 04.02.2026 07:50
Sources 1
About this happening:
**CISA** added **CVE-2025-40551** in **SolarWinds Web Help Desk** to the **KEV catalog** and imposed **federal remediation deadlines**, turning a newly exploited flaw into a compl...
CISA KEV remediation deadline for SolarWinds WHD CVE-2025-40551
Public Sector ActionAbout this happening: **CISA** added **CVE-2025-40551** in **SolarWinds Web Help Desk** to the **KEV catalog** and imposed **federal remediation deadlines**, turning a newly exploited flaw into a compl...
Timeline
-
01.10.2025 15:36 2 articles · 7mo ago
Red Hat OpenShift AI vulnerability disclosure
Initial DisclosureRed Hat disclosed CVE-2025-10725 in Red Hat OpenShift AI, a privilege-escalation flaw affecting OpenShift AI 2.19, 2.21, and Red Hat OpenShift AI (RHOAI) that can let a low-privileged authenticated user reach full cluster administrator access and compromise confidentiality, integrity, and availability across the complete infrastructure. Red Hat assigned the issue a CVSS score of 9.9/10.0, classified it as Important rather than Critical because exploitation requires authenticated access, and recommended avoiding broad permissions for system-level groups and tightening the ClusterRoleBinding that associates the kueue-batch-user-role with the system:authenticated group.
Show sources
- Red Hat OpenShift AI Flaw Exposes Hybrid Cloud Infrastructure to Full Takeover — thehackernews.com — 01.10.2025 15:36
- Red Hat OpenShift AI Flaw Exposes Hybrid Cloud Infrastructure to Full Takeover — thehackernews.com — 01.10.2025 15:36