Skip to main content

trustyai-service-operator CVE-2026-15063

| EUVDEUVD-2026-42293 MEDIUM
Missing Authentication for Critical Function (CWE-306)
2026-07-08 redhat GHSA-qhhg-cg26-g7r4
6.3
CVSS 3.1 · Vendor: redhat
Share

Severity by source

Vendor (redhat) PRIMARY
6.3 MEDIUM
AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
vuln.today AI
6.3 MEDIUM

Adjacent vector because exploitation is confined to the Kubernetes cluster network; PR:L because a running pod is required; C:H for exposed metrics data; I:L per provided vector, A:N as no denial of service is described.

3.1 AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
4.0 AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N

Primary rating from Vendor (redhat).

CVSS VectorVendor: redhat

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
Attack Vector
Adjacent
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
Low
Availability
None

Lifecycle Timeline

1
Analysis Generated
Jul 08, 2026 - 16:16 vuln.today

DescriptionCVE.org

A flaw was found in the gorch service template, which is part of the trustyai-service-operator. Even when authentication is enabled, the gorch service exposes unproxied orchestrator and detector metrics ports. This allows any pod on the cluster network to directly access these ports, bypassing the kube-rbac-proxy and its authentication mechanisms. This could lead to unauthorized access to the orchestrator and detector metrics.

AnalysisAI

Unproxied metrics port exposure in the gorch service template of trustyai-service-operator (part of Red Hat OpenShift AI) allows any pod on the cluster network to access orchestrator and detector metrics endpoints while bypassing kube-rbac-proxy authentication. The flaw manifests specifically when authentication is enabled - the configuration that should be protective is the same one under which the bypass exists. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Gain pod execution on cluster
Delivery
Enumerate cluster-internal service endpoints
Exploit
Identify unproxied gorch metrics port
Execution
Send unauthenticated HTTP metrics request
Persist
Bypass kube-rbac-proxy
Impact
Exfiltrate orchestrator and detector metrics

Vulnerability AssessmentAI

Exploitation Three concrete conditions must be met: (1) Red Hat OpenShift AI must be deployed with the trustyai-service-operator and the gorch service template instantiated; (2) authentication must be enabled on the gorch service - paradoxically, this is the configuration under which the bypass exists, as the unproxied port issue only matters when authentication is otherwise expected to be enforced; (3) the attacker must control a pod with network reachability to the cluster-internal pod network (CVSS AV:A, PR:L). … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 vector AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N scores 6.3 (Medium), which is a reasonable reflection of real-world risk. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker who has obtained execution in any pod on the OpenShift cluster network (via compromised workload, misconfigured RBAC allowing pod creation, or supply chain compromise of a deployed container) issues direct HTTP requests to the gorch service's orchestrator or detector metrics endpoints on their published pod-network ports. Because these ports are unproxied, kube-rbac-proxy is never consulted and no token validation occurs, returning full metrics data to the caller. …
Remediation Check the Red Hat advisory at https://access.redhat.com/security/cve/CVE-2026-15063 for patch availability, as no specific fixed version was confirmed in the available data at time of analysis. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-15063 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy