Threats Tagged 'cve-2025-9714'

Multiple vulnerabilities have been identified in Red Hat AI Inference Server 3. 2. 5 (ROCm), collectively tracked under CVE-2025-9230 and related CVEs. These issues involve a range of weaknesses as indicated by associated CWEs such as buffer overflows, improper input validation, and code injection risks. The vendor has issued an advisory (RHSA-2025:23449) announcing the availability of Red Hat AI Inference Server 3. 2. 5 (ROCm) but does not explicitly state that these vulnerabilities have been fixed in this release. No direct patch or remediation details are provided in the advisory content. There are no known exploits in the wild at this time. The severity is assessed as high based on the vendor's classification and the nature of the vulnerabilities.

Multiple vulnerabilities have been identified in Red Hat AI Inference Server Model Optimization Tools 3. 2. 5 (CUDA), affecting various components of the product. The advisory lists seven CVEs including CVE-2025-9230 and others, with a high severity rating. However, the vendor advisory explicitly states that no fixes or patches are currently available for these issues. There are no known exploits in the wild at this time. The affected product versions include Red Hat AI Inference Server 3. 2 on amd64 architecture. The vendor has not provided specific remediation guidance or temporary mitigations in the advisory.

Red Hat AI Inference Server 3. 2. 5 (ROCm) is affected by multiple security vulnerabilities identified by 11 CVEs including CVE-2025-9230. These vulnerabilities cover a range of common weakness enumerations (CWEs) such as buffer overflows, improper input validation, and code injection risks. The advisory indicates the availability of the updated version 3. 2. 5 but explicitly states that no fixes have been applied in this release. There are no known exploits in the wild at this time. The vendor advisory does not confirm the availability of patches or mitigations for these vulnerabilities.

Multiple security vulnerabilities have been identified in Red Hat AI Inference Server 3. 2. 5 (TPU), affecting various components of the product. The advisory references 10 CVEs including CVE-2025-9230 and others, with a high severity rating. No patches or fixes are currently provided in the advisory. The vulnerabilities cover a range of weaknesses as indicated by associated CWEs such as buffer overflows, improper input validation, and code injection risks. There are no known exploits in the wild at this time. The vendor advisory does not specify any mitigation steps or temporary workarounds.

Red Hat AI Inference Server 3. 2. 5 (CUDA) is affected by multiple vulnerabilities identified under CVE-2025-9230 and related CVEs. These vulnerabilities involve various weakness types such as buffer overflows, improper input validation, and code injection risks. The advisory indicates the availability of the updated Red Hat AI Inference Server 3. 2. 5 (CUDA) version, but no explicit patch or fix details are provided in the advisory content. No known exploits in the wild have been reported. The severity is classified as high, reflecting the potential impact of these vulnerabilities if exploited.

CVE-2024-5642 concerns Red Hat Discovery, a tool that inspects and reports environment data such as system counts, operating systems, and configuration details within a network. The advisory identifies this as a high-severity vulnerability affecting multiple Red Hat Discovery versions and related products. The vendor advisory does not indicate any available patches or fixes at this time. No known exploits are reported in the wild. The vulnerability is part of a broader advisory covering multiple CVEs related to Red Hat Discovery and subscription management tools.

Red Hat has released an updated version of Red Hat Ceph Storage container images based on the latest ubi9 base image and Ceph 8. 1. This security advisory (RHSA-2026:1652) addresses multiple vulnerabilities including CVE-2024-5642 and 16 additional CVEs. The update includes fixes for various bugs and security issues as detailed in multiple bugzilla entries. No known exploits are reported in the wild at this time. The advisory provides updated container images available for download from the Red Hat container registry.