CVE-2024-7557
Published: 12 August 2024
Summary
CVE-2024-7557 is a high-severity Authentication Bypass by Primary Weakness (CWE-305) vulnerability in Redhat Openshift Ai. Its CVSS base score is 8.8 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked in the top 45.6% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
This vulnerability is AI-related — categorised as Other Platforms; in the Supply Chain and Deployment risk domain; MITRE ATLAS techniques in scope: AI Model Inference API Access (AML.T0040).
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-48861
Vulnerability details
A vulnerability was found in OpenShift AI that allows for authentication bypass and privilege escalation across models within the same namespace. When deploying AI models, the UI provides the option to protect models with authentication. However, credentials from one model…
more
can be used to access other models and APIs within the same namespace. The exposed ServiceAccount tokens, visible in the UI, can be utilized with oc --token={token} to exploit the elevated view privileges associated with the ServiceAccount, leading to unauthorized access to additional resources.
- CWE(s)
AI Security AnalysisAI
- AI Category
- Other Platforms
- Risk Domain
- Supply Chain and Deployment
- OWASP Top 10 for LLMs 2025
- None mapped
- Classification Reason
- OpenShift AI is an enterprise platform for deploying and managing AI/ML models, fitting the 'Other Platforms' category as it handles model serving, authentication, and namespace-based access control for AI workloads.
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
CVE exposes ServiceAccount tokens in UI (T1552.007, T1528), enabling their theft and misuse as valid cloud accounts for auth bypass (T1078.004), privilege escalation via vuln exploitation (T1068), and elevated cloud admin commands with oc CLI (T1651).
MITRE ATLAS TechniquesAI
MITRE ATLAS techniques
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.