CVE-2026-34881

🗓️ 31 Mar 2026 05:29:08Reported by mitreType

CVE-2026-34881: OpenStack Glance SSRF via HTTP redirects during image import for specific versions.

Reporter	Title	Published	Views	Family All 19
ATTACKERKB	CVE-2026-34881	31 Mar 202605:29	–	attackerkb
Circl	CVE-2026-34881	31 Mar 202610:09	–	circl
CNNVD	OpenStack Glance 安全漏洞	31 Mar 202600:00	–	cnnvd
Cvelist	CVE-2026-34881	31 Mar 202605:29	–	cvelist
Debian CVE	CVE-2026-34881	31 Mar 202605:29	–	debiancve
EUVD	EUVD-2026-17323	31 Mar 202606:31	–	euvd
Github Security Blog	OpenStack Glance is affected by Server-Side Request Forgery (SSRF)	31 Mar 202606:31	–	github
NVD	CVE-2026-34881	31 Mar 202606:16	–	nvd
OSV	DEBIAN-CVE-2026-34881	31 Mar 202606:16	–	osv
OSV	GHSA-MC26-Q38V-83GV OpenStack Glance is affected by Server-Side Request Forgery (SSRF)	31 Mar 202606:31	–	osv

NVD

Vulners

CNA

Node

openstack glanceRange<29.1.1

openstack glanceRange30.0.0–30.1.1

openstack glanceMatch31.0.0

[
  {
    "defaultStatus": "unaffected",
    "product": "Glance",
    "vendor": "OpenStack",
    "versions": [
      {
        "lessThan": "29.1.1",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      },
      {
        "lessThan": "30.1.1",
        "status": "affected",
        "version": "30.0.0",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "31.0.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
security	www.security.openstack.org/ossa/OSSA-2026-004.html
bugs	www.bugs.launchpad.net/glance/+bug/2138602

17 Jun 2026 10:39Current

5.9Medium risk

Vulners AI Score5.9

CVSS 3.15

EPSS0.00199

SSVC

CWE-918