Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2025-6920

Опубликовано: 30 июн. 2025
Источник: redhat
CVSS3: 5.3
EPSS Низкий

Описание

A flaw was found in the authentication enforcement mechanism of a model inference API in ai-inference-server. All /v1/* endpoints are expected to enforce API key validation. However, the POST /invocations endpoint failed to do so, resulting in an authentication bypass. This vulnerability allows unauthorized users to access the same inference features available on protected endpoints, potentially exposing sensitive functionality or allowing unintended access to backend resources.

Отчет

Red Hat Product Security has rated the severity of this issue as Moderate, based on the fact that it enables remote, unauthenticated access to protected inference features. While this does not directly compromise system integrity or availability, it bypasses intended access controls and exposes functionality to potential abuse. The core issue stems from insufficient enforcement of authentication on the /invocations endpoint.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat AI Inference Serverrhaiis/vllm-cuda-rhel9Affected
Red Hat AI Inference Serverrhaiis/vllm-rocm-rhel9Affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-306
https://bugzilla.redhat.com/show_bug.cgi?id=2375522ai-inference-server: Authentication Bypass via Unprotected Inference Endpoint in API

EPSS

Процентиль: 17%
0.00055
Низкий

5.3 Medium

CVSS3

Связанные уязвимости

nvd логотип

CVE-2025-6920

CVSS3: 5.3
nvd
15 дней назад

A flaw was found in the authentication enforcement mechanism of a model inference API in ai-inference-server. All /v1/* endpoints are expected to enforce API key validation. However, the POST /invocations endpoint failed to do so, resulting in an authentication bypass. This vulnerability allows unauthorized users to access the same inference features available on protected endpoints, potentially exposing sensitive functionality or allowing unintended access to backend resources.

github логотип

GHSA-5qf8-7rm9-wfxp

CVSS3: 5.3
github
15 дней назад

A flaw was found in the authentication enforcement mechanism of a model inference API in ai-inference-server. All /v1/* endpoints are expected to enforce API key validation. However, the POST /invocations endpoint failed to do so, resulting in an authentication bypass. This vulnerability allows unauthorized users to access the same inference features available on protected endpoints, potentially exposing sensitive functionality or allowing unintended access to backend resources.

EPSS

Процентиль: 17%
0.00055
Низкий

5.3 Medium

CVSS3