Vulnerability in Red Hat Ai Inference Server 3.2
CVE-2025-14831
A flaw was found in GnuTLS. This vulnerability allows a denial of service (DoS) by excessive CPU (Central Processing Unit) and memory consumption via specially crafted malicious certificates containing a large number of name constraints an…
EPSS: 0.006 (46.0th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L.
Affected products
- Red Hat Ai Inference Server 3.2 — versions sha256:54616c9f3e4d27120504b0b2020432ef3ff85286a50de7be842f05df0cfcd69e, 1775740563, 1780681984
- Red Hat Ai Inference Server 3.3 — versions sha256:be6d568f28044533e4ad80f0856407c359e2eaf31a6b89cada433e6575d2300e, 1778244531, 1775749857
- Red Hat Ceph Storage 8 — versions 1774002867, sha256:1160569002c25d3d349bbe41b57eeffade438853d3419edca01813227440f414
- Red Hat Discovery 2 — versions sha256:062310de4b34e278f8c7e4634def673a77d1228d493541ef1264ba4cb83b68eb, 1775675922, 1775668717
- Red Hat Enterprise Linux 10 — versions 0:3.8.10-3.el10_1
- Red Hat Enterprise Linux 10.0 Extended Update Support — versions 0:3.8.9-9.el10_0.17
- Red Hat Enterprise Linux 6
- Red Hat Enterprise Linux 7
- Red Hat Enterprise Linux 8 — versions 0:3.6.16-8.el8_10.5
- Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support — versions 0:3.6.14-10.el8_4.1, 0:4.13-3.el8_4.1
Weakness classification (CWE)
References
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
Frequently asked questions
- What is CVE-2025-14831?
- CVE-2025-14831 is a medium-severity vulnerability in Red Hat Ai Inference Server 3.2, classified under Inefficient Algorithmic Complexity. CVSS score: 5.3/10. Published 2026-02-09.
- How severe is CVE-2025-14831?
- Medium severity. CVSS v3 base score is 5.3 out of 10.