runtimes-inventory-rhel8-operator: proxy attaches admin creds to all commands
CVE-2025-11393 Published on December 15, 2025

Insights-runtimes-tech-preview/runtimes-inventory-rhel8-operator: improper proxy configuration allows unauthorized administrative commands
A flaw was found in runtimes-inventory-rhel8-operator. An internal proxy component is incorrectly configured. Because of this flaw, the proxy attaches the cluster's main administrative credentials to any command it receives, instead of only the specific reports it is supposed to handle. This allows a standard user within the cluster to send unauthorized commands to the management platform, effectively acting with the full permissions of the cluster administrator. This could lead to unauthorized changes to the cluster's configuration or status on the Red Hat platform.

Vendor Advisory NVD

Vulnerability Analysis

Attack Vector:
ADJACENT_NETWORK
Attack Complexity:
LOW
Privileges Required:
LOW
User Interaction:
NONE
Scope:
CHANGED
Confidentiality Impact:
HIGH
Integrity Impact:
HIGH
Availability Impact:
NONE

Timeline

Reported to Red Hat.

Made public. 69 days later.

Weakness Type

What is a Confused Deputy Vulnerability?

The product receives a request, message, or directive from an upstream component, but the product does not sufficiently preserve the original source of the request before forwarding the request to an external actor that is outside of the product's control sphere. This causes the product to appear to be the source of the request, leading it to act as a proxy or other intermediary between the upstream component and the external actor.

CVE-2025-11393 has been classified to as a Confused Deputy vulnerability or weakness.


Products Associated with CVE-2025-11393

stack.watch emails you whenever new vulnerabilities are published in Red Hat Insights Runtimes or Red Hat Lightspeed For Runtimes. Just hit a watch button to start following.

Red Hat Insights Runtimes
 
Red Hat Lightspeed For Runtimes
 

Affected Versions

Red Hat Lightspeed (formerly Insights) for Runtimes 1.0: Red Hat Runtimes Inventory Operator:

Exploit Probability

EPSS
0.04%
Percentile
12.67%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.