CVE-2025-69725

medium Red Hat
CVSS v3 Base Score
4.7
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N
EPSS Score
0.0%
Exploitation probability in 30 days
Top 89% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Confidentiality
Low
Integrity
None
Availability
None
Published: February 19, 2026 (84 days ago)
Last Modified: February 19, 2026
Vendor: Red Hat

Description

An Open Redirect vulnerability in the go-chi/chi >=5.2.2 RedirectSlashes function allows remote attackers to redirect victim users to malicious websites using the legitimate website domain.

CWE

CWE-601

Affected Products

External Secrets Operator for Red Hat OpenShiftGatekeeper 3Logging Subsystem for Red Hat OpenShiftMulticluster Engine for KubernetesOpenShift PipelinesOpenShift ServerlessRed Hat Advanced Cluster Management for Kubernetes 2Red Hat Advanced Cluster Security 4Red Hat Edge Manager 1Red Hat Enterprise Linux 8

References

🔗 bugzilla.redhat.com 🔗 www.cve.org 🔗 nvd.nist.gov 🔗 go-chichi.com 🔗 github.com