17 matches found
EUVD-2026-21547
A flaw was found in odh-dashboard in Red Hat Openshift AI. This vulnerability in the odh-dashboard component of Red Hat OpenShift AI RHOAI allows for the disclosure of Kubernetes Service Account tokens through a NodeJS endpoint. This could enable an attacker to gain unauthorized access to...
CVE-2026-5483
A flaw was found in odh-dashboard in Red Hat Openshift AI. This vulnerability in the odh-dashboard component of Red Hat OpenShift AI RHOAI allows for the disclosure of Kubernetes Service Account tokens through a NodeJS endpoint. This could enable an attacker to gain unauthorized access to...
CVE-2026-5483
A flaw was found in odh-dashboard in Red Hat Openshift AI. This vulnerability in the odh-dashboard component of Red Hat OpenShift AI RHOAI allows for the disclosure of Kubernetes Service Account tokens through a NodeJS endpoint. This could enable an attacker to gain unauthorized access to...
CVE-2026-5483 Odh-dashboard: odh dashboard kubernetes service account exposure
A flaw was found in odh-dashboard in Red Hat Openshift AI. This vulnerability in the odh-dashboard component of Red Hat OpenShift AI RHOAI allows for the disclosure of Kubernetes Service Account tokens through a NodeJS endpoint. This could enable an attacker to gain unauthorized access to...
CVE-2026-5483 Odh-dashboard: odh dashboard kubernetes service account exposure
A flaw was found in odh-dashboard in Red Hat Openshift AI. This vulnerability in the odh-dashboard component of Red Hat OpenShift AI RHOAI allows for the disclosure of Kubernetes Service Account tokens through a NodeJS endpoint. This could enable an attacker to gain unauthorized access to...
CVE-2026-5483
A flaw was found in odh-dashboard in Red Hat Openshift AI. This vulnerability in the odh-dashboard component of Red Hat OpenShift AI RHOAI allows for the disclosure of Kubernetes Service Account tokens through a NodeJS endpoint. This could enable an attacker to gain unauthorized access to...
CVE-2026-5483
CVE-2026-5483 – Odh-dashboard component in Red Hat OpenShift AI has a flaw that allows disclosure of Kubernetes Service Account tokens through a NodeJS endpoint, enabling potential unauthorized access to Kubernetes resources. Affected product: Red Hat OpenShift AI (odh-dashboard). Root cause: inf...
Red Hat OpenShift AI 安全漏洞
Red Hat OpenShift AI is an AI-oriented lifecycle management platform developed by Red Hat Inc. There is a security vulnerability in Red Hat OpenShift AI. This vulnerability stems from the NodeJS endpoints in the odh-dashboard component, which may leak Kubernetes service account tokens. This could...
PT-2026-32006
Name of the Vulnerable Software and Affected Versions Red Hat OpenShift AI odh-dashboard affected versions not specified Description A flaw exists in the odh-dashboard component of Red Hat OpenShift AI RHOAI that allows for the disclosure of Kubernetes Service Account tokens through a NodeJS...
RHEL 6 : odh-operator-container (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - http-proxy-middleware: Denial of Service CVE-2024-21536 Note that Nessus has not tested for this issue but has...
Ubuntu: Security Advisory (USN-6493-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-6493-2: hibagent update
USN-6493-1 fixed a vulnerability in hibagent. This update provides the corresponding update for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Original advisory details: On Ubuntu 18.04 LTS and Ubuntu 16.04 LTS, the hibagent package has been updated to add IMDSv2 support, as IMDSv1 uses an insecure...
USN-6493-1: hibagent update
On Ubuntu 20.04 LTS and Ubuntu 22.04 LTS, the hibagent package has been updated to add IMDSv2 support, as IMDSv1 uses an insecure protocol and is no longer recommended. In addition, on all releases, hibagent has been updated to do nothing if ODH is configured...
PT-2023-36322 · Canonical · Hibagent
Name of the Vulnerable Software and Affected Versions: hibagent versions prior to the updated version for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS Description: The issue concerns the use of an insecure protocol by IMDSv1, which is no longer recommended. To address this, the hibagent package has been...
PT-2023-36321 · Canonical · Ubuntu 20.04 Lts +1
Name of the Vulnerable Software and Affected Versions: hibagent versions on Ubuntu 20.04 LTS and Ubuntu 22.04 LTS Description: The issue concerns the use of an insecure protocol by IMDSv1, which is no longer recommended. To address this, the hibagent package has been updated to add IMDSv2 support...
CVE-2023-0923 Odh-notebook-controller-container: missing authorization allows for file contents disclosure
A flaw was found in the Kubernetes service for notebooks in RHODS, where it does not prevent pods from other namespaces and applications from making requests to the Jupyter API. This flaw can lead to file content exposure and other issues...
Important: Red Hat Security Advisory: Red Hat OpenShift Data Science 1.22.1 security update
An update for kubeflow, dashboard, deployer is now available for Red Hat OpenShift Data Science 1.22. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availabl...