Description
A flaw was found in `guardrails-detectors`, a component of Red Hat OpenShift AI. This vulnerability, known as Regular Expression Denial of Service (ReDoS), allows a remote attacker to provide specially crafted regular expressions to the public detection API. This can cause catastrophic backtracking, leading to a worker process consuming 100% CPU indefinitely and resulting in a denial of service for the entire guardrails-mediated LLM pipeline.
Problem types
Inefficient Regular Expression Complexity
Product status
Timeline
| 2026-06-26: | Reported to Red Hat. |
| 2026-07-08: | Made public. |
References
access.redhat.com/security/cve/CVE-2026-15154
bugzilla.redhat.com/show_bug.cgi?id=2498188 (RHBZ#2498188)