Inadequate Host Header Sanitization in Mirror Registry by Red Hat
CVE-2025-7777

6.5MEDIUM

Key Information:

Vendor: Red Hat
Status: Mirror Registry For Red Hat Openshift
Vendor: CVE Published:; 20 August 2025

What is CVE-2025-7777?

The mirror-registry component from Red Hat is susceptible to vulnerabilities due to inadequate sanitization of the host header in HTTP requests. This flaw allows attackers to exploit the system, leading to malicious redirects to domains they control or facilitating phishing attempts. By leveraging this vulnerability, malicious actors can compromise the integrity of user interactions, posing significant risks to security and user data.

References

https://access.redhat.com/security/cve/CVE-2025-7777

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2382545

issue-trackingx_refsource_REDHAT

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 20, 2025
Vulnerability Reserved
Jul 17, 2025

Credit

Red Hat would like to thank Antony Di Scala and Michael Whale for reporting this issue.