CVE-2026-23536 in OpenShift AI
Summary
by MITRE • 03/21/2026
A security issue was discovered in the Feast Feature Server's `/read-document` endpoint that allows an unauthenticated remote attacker to read any file accessible to the server process. By sending a specially crafted HTTP POST request, an attacker can bypass intended access restrictions to potentially retrieve sensitive system files, application configurations, and credentials.
Once again VulDB remains the best source for vulnerability data.
Analysis
by VulDB Data Team • 03/27/2026
The vulnerability identified as CVE-2026-23536 represents a critical directory traversal flaw within the Feast Feature Server's `/read-document` endpoint. This security weakness stems from inadequate input validation and improper access control mechanisms that fail to properly sanitize user-supplied parameters. The flaw allows unauthenticated remote attackers to exploit the server's file reading capabilities without requiring any authentication credentials, making it particularly dangerous in production environments where the server may have elevated privileges and access to sensitive system resources.
The technical implementation of this vulnerability resides in the server's handling of HTTP POST requests to the `/read-document` endpoint. Attackers can craft malicious requests that manipulate file path parameters to traverse directory structures and access files outside of the intended document storage boundaries. This type of vulnerability maps directly to CWE-22 - Improper Limitation of a Pathname to a Restricted Directory, which is classified as a path traversal or directory traversal vulnerability. The flaw demonstrates poor input sanitization practices where user-controllable data is directly incorporated into file system operations without proper validation or canonicalization checks.
The operational impact of this vulnerability extends beyond simple information disclosure, as it provides attackers with potential access to critical system components including application configuration files, database connection strings, API keys, and other sensitive credentials stored on the server. Depending on the server's privilege level and file system permissions, attackers may be able to access not only application-specific files but also system configuration files, log files, and potentially other sensitive data that could be used for further exploitation. This vulnerability aligns with ATT&CK technique T1083 - File and Directory Discovery, as it enables attackers to enumerate and access files that would normally be restricted.
Mitigation strategies for CVE-2026-23536 should focus on implementing robust input validation and access control measures. The immediate solution involves sanitizing all user-supplied parameters to prevent path traversal attempts, implementing proper canonicalization of file paths, and enforcing strict access controls that limit file system access to only intended directories. Organizations should also consider implementing rate limiting and monitoring for suspicious request patterns, as well as conducting regular security assessments to identify similar vulnerabilities in other endpoints. The fix should align with security best practices outlined in NIST SP 800-53 and ISO 27001 controls for access control and input validation, ensuring that file system operations are properly restricted to prevent unauthorized access to system resources.