CNNVD-202509-3611 Information
CNNVD ID
CNNVD-202509-3611
Related CVE
- CNNVD Published: 2025-09-22
Description (Chinese)
Red Hat OpenShift Lightspeed是美国红帽(Red Hat)公司的一个基于 OpenShift 平台的加速工具。旨在提高 Kubernetes 应用程序的开发和部署速度。 Red Hat OpenShift Lightspeed存在安全漏洞,该漏洞源于访问控制不足,可能导致本地低权限用户访问和操作同一系统上其他用户的聊天历史。
Description (English)
Red Hat OpenShift Lightseed is an OpenShift platform-based accelerator for Red Hat. To increase the speed of development and deployment of Kubernetes applications. Red Hat OpenShift Lightseed has a security loophole, which stems from inadequate access controls, which may lead to local low-permit users accessing and operating the chat history of other users on the same system.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
RedisBloom
Published
2025-09-22
Last Modified
2026-02-24
References
https://bugzilla.redhat.com/show_bug.cgi?id=2371363 https://access.redhat.com/errata/RHSA-2025:16345 https://access.redhat.com/security/cve/CVE-2025-5962 https://access.redhat.com/errata/RHSA-2025:16346 https://vigilance.fr/vulnerability/Lightspeed-privilege-escalation-via-History-Management-48268
Patch
https://access.redhat.com/security/cve/cve-2025-5962
Share on: