CVE Tools
Sign in

CVE-2024-7557

Odh-dashboard: odh-model-controller: cross-model authentication bypass in openshift ai

Published: Aug 8, 2024Updated: Feb 25, 2026 Sources: CVE List NVDCWE-305
NVD MITRE
8.8CVSSHIGH
EPSS Score
0.9%
Top 44.0%
CISA KEV
Not in KEV
Exploits
No Known Exploits
Remediation
Patch Available

Description

A vulnerability was found in OpenShift AI that allows for authentication bypass and privilege escalation across models within the same namespace. When deploying AI models, the UI provides the option to protect models with authentication. However, credentials from one model can be used to access other models and APIs within the same namespace. The exposed ServiceAccount tokens, visible in the UI, can be utilized with oc --token={token} to exploit the elevated view privileges associated with the ServiceAccount, leading to unauthorized access to additional resources.

CVSS Vector Breakdown

AV:NAC:LPR:LUI:NS:UC:HI:HA:H
Exploitability
AV:NAttack Vector
Network
AC:LAttack Complexity
Low
PR:LPrivileges Required
Low
UI:NUser Interaction
None
Scope
S:UScope
Unchanged
Impact
C:HConfidentiality
High
I:HIntegrity
High
A:HAvailability
High
Open in CVSS calculator →

Weaknesses

CWE-305NVD-CWE-Other

Affected Products

openshift airedhat
On-prem
Operating Systems / linux-distro
openshift data scienceredhat
On-prem
Operating Systems / linux-distro
Red Hat OpenShift AI (RHOAI)Red Hat
SaaSSaaS Service
Cloud & SaaS
Red Hat OpenShift Data Science (RHODS)Red Hat
On-prem
Operating Systems / linux-distro
redhatcommercialUSOperating Systemsaka red hat
red hatcommercialUSOperating Systemsaka red hat

Exploitability

Official Patch Available
Workaround Available

References

https://access.redhat.com/security/cve/CVE-2024-7557
access.redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=2303094
bugzilla.redhat.com
https://github.com/opendatahub-io/odh-dashboard/pull/3198
github.com

Timeline

Published
Aug 8, 2024
Last Updated
Feb 25, 2026

Unlock Complete Vulnerability Intelligence

Get the full picture for CVE-2024-7557 and every CVE in our database. Create a free account — no credit card required.

Create Free Account
Plain-language analysis
Impact assessment and exploitation scenario in plain English
Attack graph visualization
Interactive attack path and kill chain mapping
Exploit details & PoC links
ExploitDB, Metasploit, GitHub PoCs with direct links
Nuclei scanner templates
Ready-to-use vulnerability scanner templates
Full remediation guide
Patch instructions, workarounds, and compliance impact
Interactive AI chat
Ask questions about this vulnerability in natural language
Related vulnerabilities
Semantically similar CVEs and attack patterns
REST API & MCP access
Integrate vulnerability data into your workflows