Insufficient Access Control Vulnerability in Red Hat Developer Hub Container Image
CVE-2025-5417

6.1MEDIUM

Key Information:

Vendor: Red Hat
Status: Red Hat Developer Hub
Vendor: CVE Published:; 19 August 2025

What is CVE-2025-5417?

A vulnerability exists in the Red Hat Developer Hub container image that allows users with standard access rights to manipulate its content. This insufficient access control issue enables unauthorized modifications to the image, posing a risk to the confidentiality and integrity of the data. Notably, while changes can be made, they are not permanent, as they revert upon the pod's restart, which can obscure malicious activities but still allows for potential data exposure.

References

https://access.redhat.com/security/cve/CVE-2025-5417

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2369602

issue-trackingx_refsource_REDHAT

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 19, 2025
Vulnerability Reserved
May 31, 2025