Key Information Vulnerability Description CVE Number: CVE-2024-7557 Public Disclosure Date: August 7, 2024 Last Modified Date: August 8, 2024 Severity: Medium Description: A vulnerability has been identified in OpenShift AI that allows authentication bypass and privilege escalation between models within the same namespace. When deploying AI models, the UI provides authentication protection options. However, credentials from one model can be used to access other models and APIs within the same namespace. Exposed ServiceAccount tokens, visible in the UI, can be exploited using the command to gain elevated view permissions associated with the ServiceAccount, leading to unauthorized access to additional resources. Additional Information Bugzilla: 2303094 CWE: 200, 284 FAQ: Frequently Asked Questions about CVE-2024-7557 Affected Packages and Red Hat Security Patches Affected Packages: - Red Hat OpenShift AI (RHOAI) - Red Hat OpenShift Data Science (RHODS) Affected Components: - - - CVSS Score CVSS v3 Base Score: 7.6 CVSS v3 Vector: Acknowledgments Thanks to: Adam Belluscio (RedHat) for reporting this issue. Frequently Asked Questions Why does Red Hat’s CVSS v3 score or impact differ from other vendors? My product is listed as “under investigation” or “affected” — when will Red Hat release a fix for this vulnerability? If my product is listed as “not fixed,” what should I do? What are mitigations? I have a Red Hat product, but it’s not on the above list — is it affected? Why is my security scanner reporting that my product is affected by this vulnerability, even though my product version is fixed or not affected? Copyright and Updates Last Modified Date: August 8, 2024, 9:17:49 PM UTC CVE Description Copyright: © 2021