CVE-2025-12103

Name of the Vulnerable Software and Affected Versions Red Hat Openshift AI Service (affected versions not specified)

Description A flaw exists in the TrustyAI component of Red Hat Openshift AI Service. This component grants all service accounts and users within a cluster permissions to retrieve, list, and monitor any pod across all namespaces. Specifically, TrustyAI creates a role named trustyai-service-operator-lmeval-user-role and a ClusterRoleBinding named trustyai-service-operator-default-lmeval-user-rolebinding. This binding is applied to system:authenticated, effectively allowing any authenticated user or service account to access pod information in any namespace. Users can also access all persistentvolumeclaims and lmevaljobs.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.