Description

A flaw was found in Red Hat Openshift AI Service. A low-privileged attacker with access to an authenticated account, for example as a data scientist using a standard Jupyter notebook, can escalate their privileges to a full cluster administrator. This allows for the complete compromise of the cluster's confidentiality, integrity, and availability. The attacker can steal sensitive data, disrupt all services, and take control of the underlying infrastructure, leading to a total breach of the platform and all applications hosted on it.

INFO

Published Date :

2025-09-30T17:47:08.577Z

Last Modified :

2025-12-24T13:39:32.225Z

Source :

redhat
AFFECTED PRODUCTS

The following products are affected by CVE-2025-10725 vulnerability.

Vendors Products
Redhat
  • Openshift Ai
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-10725.

URL Resource
https://access.redhat.com/errata/RHSA-2025:16981 cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2025:16982 cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2025:16983 cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2025:16984 cve-icon cve-icon
https://access.redhat.com/errata/RHSA-2025:17501 cve-icon cve-icon
https://access.redhat.com/security/cve/CVE-2025-10725 cve-icon cve-icon
https://bugzilla.redhat.com/show_bug.cgi?id=2396641 cve-icon cve-icon
https://github.com/opendatahub-io/opendatahub-operator/commit/070057ebd0882be0e397bee1daa18c36374a03c0 cve-icon cve-icon
https://github.com/opendatahub-io/opendatahub-operator/pull/2571 cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-10725 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-10725 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact