Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

CVE-2024-7557 Odh-dashboard: odh-model-controller: cross-model authentication bypass in openshift ai

🗓️ 08 Aug 2024 21:14:33Reported by redhatType 
cvelist
 cvelist🔗 www.cve.org👁 8 Views

CVE-2024-7557 Odh-dashboard: Authentication bypass in OpenShift A

Show more
Related
Affected
Refs
ReporterTitlePublishedViews
Family
Vulnrichment		CVE-2024-7557 Odh-dashboard: odh-model-controller: cross-model authentication bypass in openshift ai
8 Aug 202421:33
vulnrichment
RedhatCVE		CVE-2024-7557
7 Aug 202408:47
redhatcve
CVE		CVE-2024-7557
12 Aug 202413:38
cve
NVD		CVE-2024-7557
12 Aug 202413:38
nvd
[
  {
    "vendor": "Red Hat",
    "product": "Red Hat OpenShift AI (RHOAI)",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "odh-dashboard-container",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/a:redhat:openshift_ai"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat OpenShift AI (RHOAI)",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "odh-model-controller-container",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/a:redhat:openshift_ai"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat OpenShift Data Science (RHODS)",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "rhods/odh-dashboard-rhel8",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/a:redhat:openshift_data_science"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat OpenShift Data Science (RHODS)",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "rhods/odh-model-controller-rhel8",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/a:redhat:openshift_data_science"
    ]
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
08 Aug 2024 21:33Current
CVSS38.8
EPSS0.0005
CWE-284
vulnerabilityopenshift aiauthentication bypassprivilege escalationnamespaceai modelsuiserviceaccount tokensoc --token={tokenexploitview privilegesunauthorized access.
8
.json
Report