{"vulnerability": "CVE-2026-15378", "sightings": [{"uuid": "a0cf0afc-faa2-4294-ac19-7a2c3cc0a4e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-15378", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqbvpddyrq2r", "content": "CVE-2026-15378 - red hat openshift ai (rhoai)\nThe Guardrails-detectors component allows attackers to access sensitive information and read critical data from a system. This is a serious risk because it could expose\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#redhat #CVE #infosec", "creation_timestamp": "2026-07-10T10:08:04.447604Z"}, {"uuid": "3c66f7da-cd94-4542-88c0-dd615dad80ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-15378", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116895214843907721", "content": "Red Hat OpenShift AI hit by CRITICAL SSRF (CVE-2026-15378): guardrails-detectors flaw allows remote attackers to access cloud metadata, K8s API, and secrets via crafted XSD. Monitor for exploitation &amp; restrict egress. https://radar.offseq.com/threat/cve-2026-15378-server-side-request-forgery-ssrf-in-6764a44d8dfc74c1 #OffSeq #CVE202615378 #RedHat #Infosec", "creation_timestamp": "2026-07-10T10:30:26.532349Z"}, {"uuid": "0c6fe51b-feef-47fe-8785-c172bf5e68fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-15378", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mqbwxefz3c2d", "content": "CVE-2026-15378: CRITICAL SSRF in Red Hat OpenShift AI via guardrails-detectors. Remote attackers can access internal data &amp; secrets. Review controls &amp; monitor activity. https://radar.offseq.com/threat/cve-2026-15378-server-side-request-forgery-ssrf-in-6764a44d8dfc74c1 #OffSeq #RedHat #CVE202615378", "creation_timestamp": "2026-07-10T10:30:28.434034Z"}, {"uuid": "bf15c50d-4f64-484f-9150-025374635ac4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-15378", "type": "seen", "source": "https://bsky.app/profile/cybercod.bsky.social/post/3mqbxmq2tao2u", "content": "Thanks for flagging this! CVE-2026-15378 is definitely a priority for RHOAI users. Always check the official Red Hat Security Advisory (RHSA) for the specific patch and mitigation steps. Stay secure!", "creation_timestamp": "2026-07-10T10:42:24.938003Z"}, {"uuid": "9750f4a1-6673-4ab1-a7a5-480ce6c694d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-15378", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqc3w4yo4x2q", "content": "CVE-2026-15378 - Guardrails-detectors: guardrails-detectors: ssrf and local file read via user-supplied xml schema (xml-with-schema:)\nCVE ID : CVE-2026-15378\n \n Published : July 10, 2026, 10:16 a.m. | 1\u00a0hour, 32\u00a0minutes ago\n \n Description : A flaw was found in the `guardrails-...", "creation_timestamp": "2026-07-10T11:59:15.395883Z"}, {"uuid": "caab6334-c844-462d-a9d6-9c35c85ddde9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-15378", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqcanm67ve26", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-15378 \u0432 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0435 guardrails-detectors: \u0443\u0433\u0440\u043e\u0437\u044b \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/699F6C1C-0548-457E-9174-143AF000CFCD", "creation_timestamp": "2026-07-10T13:23:57.819423Z"}, {"uuid": "c966fc10-f710-48bf-be18-b67cfde2058a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-15378", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mqhgzjsxjf2a", "content": "\ud83d\udd34 CVE-2026-15378 - Critical (9.3)\n\nA flaw was found in the `guardrails-detectors` component. This vulnerability allows a remote atta...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-15378/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-07-12T15:01:19.641665Z"}]}