Red Hat Security Advisory: Red Hat OpenShift sandboxed containers release
This advisory concerns vulnerabilities in Red Hat OpenShift sandboxed containers, which are based on the Kata Containers project. The vulnerabilities are identified by CVE-2025-5791 and CVE-2025-22871 and relate to security weaknesses categorized under CWE-266 (Permissions, Privileges, and Access Controls) and CWE-444 (Inconsistent Interpretation of HTTP Requests). The severity is rated as high. No CVSS score is provided, and no known exploits in the wild have been reported. The vendor advisory content does not explicitly state the availability of patches or mitigation steps.
AI Analysis
Technical Summary
Red Hat OpenShift sandboxed containers versions including 1.1 and related components are affected by two vulnerabilities (CVE-2025-5791 and CVE-2025-22871) involving privilege and access control issues (CWE-266) and inconsistent request interpretation (CWE-444). These vulnerabilities could potentially allow unauthorized actions or bypass of security controls within the container environment. The advisory references Red Hat Product Security and the Kata Containers project but does not provide detailed technical exploitation methods or patch information.
Potential Impact
The impact is classified as high severity, indicating that successful exploitation could lead to significant security breaches such as unauthorized privilege escalation or bypassing security restrictions within OpenShift sandboxed containers. However, no known exploits have been reported in the wild at this time.
Mitigation Recommendations
Patch status is not yet confirmed — check the official Red Hat advisory at https://access.redhat.com/security/cve/CVE-2025-22871 for current remediation guidance. Since no patch links or explicit remediation instructions are provided in the advisory content, users should monitor Red Hat communications for updates and apply any official fixes once available.
Red Hat Security Advisory: Red Hat OpenShift sandboxed containers release
Description
This advisory concerns vulnerabilities in Red Hat OpenShift sandboxed containers, which are based on the Kata Containers project. The vulnerabilities are identified by CVE-2025-5791 and CVE-2025-22871 and relate to security weaknesses categorized under CWE-266 (Permissions, Privileges, and Access Controls) and CWE-444 (Inconsistent Interpretation of HTTP Requests). The severity is rated as high. No CVSS score is provided, and no known exploits in the wild have been reported. The vendor advisory content does not explicitly state the availability of patches or mitigation steps.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
Red Hat OpenShift sandboxed containers versions including 1.1 and related components are affected by two vulnerabilities (CVE-2025-5791 and CVE-2025-22871) involving privilege and access control issues (CWE-266) and inconsistent request interpretation (CWE-444). These vulnerabilities could potentially allow unauthorized actions or bypass of security controls within the container environment. The advisory references Red Hat Product Security and the Kata Containers project but does not provide detailed technical exploitation methods or patch information.
Potential Impact
The impact is classified as high severity, indicating that successful exploitation could lead to significant security breaches such as unauthorized privilege escalation or bypassing security restrictions within OpenShift sandboxed containers. However, no known exploits have been reported in the wild at this time.
Mitigation Recommendations
Patch status is not yet confirmed — check the official Red Hat advisory at https://access.redhat.com/security/cve/CVE-2025-22871 for current remediation guidance. Since no patch links or explicit remediation instructions are provided in the advisory content, users should monitor Red Hat communications for updates and apply any official fixes once available.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2025:12359
- Cve Count
- 2
- Additional Cves
- ["CVE-2025-22871"]
- Cvss Version
- null
Threat ID: 6a18be67e29bf47b503872bf
Added to database: 5/28/2026, 10:15:03 PM
Last enriched: 5/28/2026, 10:20:56 PM
Last updated: 5/29/2026, 4:52:58 AM
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.