Red Hat OpenShift AI: Multiple Critical Security Vulnerabilities (CVE-2026-15378, CVE-2026-15143)


This text was generated using artificial intelligence (AI).Update July 10, 2026: In addition, CVE-2026-15143 (CVSS 9.3) has been disclosed. This additional blind SSRF vulnerability also affects the guardrail detectors-component and allows attackers to exploit the file_type-Detects unauthorized access to internal systems. See below for details.

On July 10, 2026, two critical vulnerabilities were discovered in the component guardrail detectors from Red Hat OpenShift AI published. Each vulnerability has a CVSS score of 9.3 (Critical) have been assessed and allow a remote, unauthenticated attacker to gain access to sensitive internal systems and data through server-side request forgery (SSRF). As of July 10, 2026, there are no indications of active exploitation of these vulnerabilities in the wild.