Vulnerability Description
A flaw was found in Red Hat Openshift AI Service. A low-privileged attacker with access to an authenticated account, for example as a data scientist using a standard Jupyter notebook, can escalate their privileges to a full cluster administrator. This allows for the complete compromise of the cluster's confidentiality, integrity, and availability. The attacker can steal sensitive data, disrupt all services, and take control of the underlying infrastructure, leading to a total breach of the platform and all applications hosted on it.
CVSS Score
CRITICAL
Related Weaknesses (CWE)
References
- https://access.redhat.com/errata/RHSA-2025:16981
- https://access.redhat.com/errata/RHSA-2025:16982
- https://access.redhat.com/errata/RHSA-2025:16983
- https://access.redhat.com/errata/RHSA-2025:16984
- https://access.redhat.com/errata/RHSA-2025:17501
- https://access.redhat.com/security/cve/CVE-2025-10725
- https://bugzilla.redhat.com/show_bug.cgi?id=2396641
- https://github.com/opendatahub-io/opendatahub-operator/commit/070057ebd0882be0e3
- https://github.com/opendatahub-io/opendatahub-operator/pull/2571
FAQ
What is CVE-2025-10725?
CVE-2025-10725 is a vulnerability with a CVSS score of 9.9 (CRITICAL). A flaw was found in Red Hat Openshift AI Service. A low-privileged attacker with access to an authenticated account, for example as a data scientist using a standard Jupyter notebook, can escalate the...
How severe is CVE-2025-10725?
CVE-2025-10725 has been rated CRITICAL with a CVSS base score of 9.9/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2025-10725?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.