7887 matches found
EUVD-2026-42777
OpenStack Ironic through before 37.0.1 allows creation or modification of nodes cross-project without authorization...
EUVD-2026-42781
In OpenStack Ironic before 37.0.1, an Ironic user with the ability to deploy nodes using the IPMI management interface can maliciously use the sendraw step to send arbitrary IPMI commands to a node, bypassing Ironic's access control...
CVE-2026-54423
In OpenStack Ironic before 37.0.1, an Ironic user with the ability to deploy nodes using the IPMI management interface can maliciously use the sendraw step to send arbitrary IPMI commands to a node, bypassing Ironic's access control...
CVE-2026-54423
In OpenStack Ironic before 37.0.1, an Ironic user with the ability to deploy nodes using the IPMI management interface can maliciously use the sendraw step to send arbitrary IPMI commands to a node, bypassing Ironic's access control...
CVE-2026-54423
OpenStack Ironic (before 37.0.1) is vulnerable: a user capable of deploying nodes via IPMI can abuse the IPMI send_raw step to send arbitrary IPMI commands to a node, bypassing Ironic’s access control. Impact is high (CVE-2026-54423). The root cause is the exposure of IPMI send_raw in deployment ...
Nova noVNC - Open Redirect
Nova noVNC contains an open redirect vulnerability. An attacker can redirect a user to a malicious site and possibly obtain sensitive information, modify data, and/or execute unauthorized operations. id: CVE-2021-3654 info: name: Nova noVNC - Open Redirect author: geeknik severity: medium...
CVE-2026-44918
OpenStack Ironic (up to 37.0.1) allows an authenticated project manager to create/modify nodes across projects without authorization, potentially misconfiguring which project owns a node and exposing secrets stored in volume connectors/targets. Red Hat notes a specific flaw where a manager can re...
GHSA-X8XR-RM9R-7MVF vulnerabilities
Vulnerabilities for packages: openstack-nova-2025.2...
GHSA-MFG3-P6M3-GJGR vulnerabilities
Vulnerabilities for packages: openstack-nova-2025.2...
GHSA-67RH-9P29-VRXR vulnerabilities
Vulnerabilities for packages: openstack-nova-2025.2...
GHSA-43HC-PWVX-PMFG vulnerabilities
Vulnerabilities for packages: openstack-nova-2025.2...
GHSA-92HC-C226-32Q7 vulnerabilities
Vulnerabilities for packages: openstack-nova-2025.2...
GHSA-5MJ6-643F-2G85 vulnerabilities
Vulnerabilities for packages: openstack-nova-2025.2...
CVE-2026-46448 vulnerabilities
Vulnerabilities for packages: openstack-nova-2025.2...
CVE-2014-3708 vulnerabilities
Vulnerabilities for packages: openstack-nova-2025.2...
CVE-2015-3280 vulnerabilities
Vulnerabilities for packages: openstack-nova-2025.2...
CVE-2014-3517 vulnerabilities
Vulnerabilities for packages: openstack-nova-2025.2...
CVE-2013-4179 vulnerabilities
Vulnerabilities for packages: openstack-nova-2025.2...
GHSA-XJMJ-P278-4JP5 vulnerabilities
Vulnerabilities for packages: openstack-nova-2025.2...
GHSA-J6XH-Q826-55JW vulnerabilities
Vulnerabilities for packages: openstack-nova-2025.2...