CVE-2026-5483

Published April 10, 2026 · Updated April 11, 2026

8.5CVSS

high

What This Means

CVE-2026-5483 is a high-severity vulnerability in the `odh-dashboard` component of Red Hat OpenShift AI, rated at a CVSS score of 8.5. It allows attackers to exploit a NodeJS endpoint to disclose Kubernetes Service Account tokens, potentially giving unauthorized access to Kubernetes resources. Security teams should immediately apply any available patches from Red Hat and review their Kubernetes access controls to mitigate this risk.

Official Description+

A flaw was found in odh-dashboard in Red Hat Openshift AI. This vulnerability in the `odh-dashboard` component of Red Hat OpenShift AI (RHOAI) allows for the disclosure of Kubernetes Service Account tokens through a NodeJS endpoint. This could enable an attacker to gain unauthorized access to Kubernetes resources.

Recommended Actions

Check if your systems use any of the affected products listed above.
Apply vendor patches immediately if available.
Monitor vendor advisories for updates and additional mitigations.
Review logs for indicators of compromise related to CVE-2026-5483.

Related Coverage

Vvulnerability

High-Severity Vulnerability in Red Hat OpenShift AI: CVE-2026-5483

CVE-2026-5483 is a high-severity vulnerability in Red Hat OpenShift AI's 'odh-dashboard'. It exposes Kubernetes Service Account tokens through a NodeJS endpoint, potentially granting unauthorized access. Immediate patching and strict access control reviews are advised.

NVD·7h ago·3 min read