CNNVD-202512-2677 Information

CNNVD ID

CNNVD-202512-2677

Related CVE

CVE-2025-11393

• CNNVD Published: 2025-12-15

Description (Chinese)

Red Hat Runtimes Inventory Operator是美国红帽（Red Hat）公司的一个程序运行时环境管理软件。 Red Hat Runtimes Inventory Operator存在安全漏洞，该漏洞源于内部代理组件配置不当，可能导致标准用户以集群管理员权限执行未授权命令。

Description (English)

Red Hat Runmes Inventory Operator is a program run by Red Hat. There is a security loophole in Red Hat Runtemes Inventory Operator, which stems from the inappropriate configuration of internal proxy components, which may lead to standard users executing unauthorized orders with cluster administrator privileges.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

红帽

Published

2025-12-15

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2025-11393 https://bugzilla.redhat.com/show_bug.cgi?id=2402032

Patch

https://access.redhat.com/security/cve/cve-2025-11393