Description
A flaw was found in `guardrails-detectors`, a component of Red Hat OpenShift AI. This vulnerability, known as Regular Expression Denial of Service (ReDoS), allows a remote attacker to provide specially crafted regular expressions to the public detection API. This can cause catastrophic backtracking, leading to a worker process consuming 100% CPU indefinitely and resulting in a denial of service for the entire guardrails-mediated LLM pipeline.
Published: 2026-07-08
Score: 6.5 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

This flaw in guardrails-detectors exposes the public detection API to the delivery of specially crafted regular expressions. The regex triggers catastrophic backtracking, allowing a remote attacker to exhaust the worker process’s CPU resources. The result is an indefinite 100% CPU load that brings down the entire guardrails‑mediated LLM pipeline. The weakness is a classic Regular Expression Denial of Service (ReDoS) classified as CWE‑1333.

Affected Systems

The vulnerability affects Red Hat OpenShift AI deployments that include the guardrails‑detectors component. All versions of Red Hat OpenShift AI that ship this component are potentially susceptible; no specific version delimiters are available in the current data.

Risk and Exploitability

The CVSS score of 6.5 indicates a moderate severity. Because the attack vector is remote and unauthenticated, an attacker can target the public API endpoint without credentials. The lack of an EPSS score and the absence of a CISA KEV listing suggest that exploitation is possible but not yet widely observed. If exploited, the denial of service could cripple the entire LLM pipeline, impacting availability for all users of the affected OpenShift AI instance.

Generated by OpenCVE AI on July 9, 2026 at 04:13 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update Red Hat OpenShift AI to the latest released version that contains the guardrails‑detectors fix.
  • If an immediate patch is not available, configure the detection API to reject or limit the complexity of regex patterns supplied in the detector_params.regex field, enforcing length or complexity constraints to prevent backtracking.
  • Apply rate limiting or CPU‑usage monitoring to guardrails worker processes so that anomalous load can be detected and throttled before full service disruption occurs.

Generated by OpenCVE AI on July 9, 2026 at 04:13 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 09 Jul 2026 00:15:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

threat_severity

Moderate


Wed, 08 Jul 2026 21:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Wed, 08 Jul 2026 20:15:00 +0000

Type Values Removed Values Added
Description A flaw was found in `guardrails-detectors`, a component of Red Hat OpenShift AI. This vulnerability, known as Regular Expression Denial of Service (ReDoS), allows a remote attacker to provide specially crafted regular expressions to the public detection API. This can cause catastrophic backtracking, leading to a worker process consuming 100% CPU indefinitely and resulting in a denial of service for the entire guardrails-mediated LLM pipeline.
Title Guardrails-detectors: guardrails-detectors: unauthenticated regular-expression denial of service (redos) via detector_params.regex
First Time appeared Redhat
Redhat openshift Ai
Weaknesses CWE-1333
CPEs cpe:/a:redhat:openshift_ai
Vendors & Products Redhat
Redhat openshift Ai
References
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}


Subscriptions

Redhat Openshift Ai
cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2026-07-08T20:38:46.315Z

Reserved: 2026-07-08T19:44:43.020Z

Link: CVE-2026-15154

cve-icon Vulnrichment

Updated: 2026-07-08T20:38:43.746Z

cve-icon NVD

No data.

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-07-08T18:43:36Z

Links: CVE-2026-15154 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-07-09T04:15:12Z

Weaknesses
  • CWE-1333

    Inefficient Regular Expression Complexity