Lucene search
+L

7928 matches found

redhat
redhat
added yesterday4 views

Important: Red Hat Security Advisory: Release of containers for RHOSO 18.0.21

Red Hat OpenStack Services on OpenShift RHOSO 18.0.21 containers are now available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS7.1AI score0.00679EPSS
Exploits1References5
redhat
redhat
added yesterday3 views

Important: Red Hat Security Advisory: Red Hat OpenStack Services on OpenShift 18.0 (golang-github-openstack-k8s-operators-os-diff) security update

An update for golang-github-openstack-k8s-operators-os-diff is now available for Red Hat OpenStack Services on OpenShift 18.0 Antelope. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a...

8.8CVSS6.8AI score0.00813EPSS
Exploits2References11
nuclei
nuclei
added yesterday153 views

Nova noVNC - Open Redirect

Nova noVNC contains an open redirect vulnerability. An attacker can redirect a user to a malicious site and possibly obtain sensitive information, modify data, and/or execute unauthorized operations. id: CVE-2021-3654 info: name: Nova noVNC - Open Redirect author: geeknik severity: medium...

6.1CVSS6.7AI score0.26792EPSS
Exploits1References5
nvd
nvd
added 6 days ago7 views

CVE-2026-54423

In OpenStack Ironic before 37.0.1, an Ironic user with the ability to deploy nodes using the IPMI management interface can maliciously use the sendraw step to send arbitrary IPMI commands to a node, bypassing Ironic's access control...

8.2CVSS0.00516EPSS
Exploits0References3
nvd
nvd
added 6 days ago7 views

CVE-2026-44918

OpenStack Ironic through before 37.0.1 allows creation or modification of nodes cross-project without authorization...

5.5CVSS0.00426EPSS
Exploits0References5
cve
cve
added 6 days ago16 views

CVE-2026-54423

OpenStack Ironic (before 37.0.1) is vulnerable: a user capable of deploying nodes via IPMI can abuse the IPMI send_raw step to send arbitrary IPMI commands to a node, bypassing Ironic’s access control. Impact is high (CVE-2026-54423). The root cause is the exposure of IPMI send_raw in deployment ...

8.2CVSS6AI score0.00516EPSS
Exploits0References3
cvelist
cvelist
added 6 days ago34 views

CVE-2026-54423

In OpenStack Ironic before 37.0.1, an Ironic user with the ability to deploy nodes using the IPMI management interface can maliciously use the sendraw step to send arbitrary IPMI commands to a node, bypassing Ironic's access control...

8.2CVSS0.00516EPSS
Exploits0References2
euvd
euvd
added 6 days ago7 views

EUVD-2026-42781

In OpenStack Ironic before 37.0.1, an Ironic user with the ability to deploy nodes using the IPMI management interface can maliciously use the sendraw step to send arbitrary IPMI commands to a node, bypassing Ironic's access control...

8.2CVSS6AI score0.00516EPSS
Exploits0References2
attackerkb
attackerkb
added 6 days ago7 views

CVE-2026-54423

In OpenStack Ironic before 37.0.1, an Ironic user with the ability to deploy nodes using the IPMI management interface can maliciously use the sendraw step to send arbitrary IPMI commands to a node, bypassing Ironic's access control...

8.2CVSS6AI score0.00516EPSS
Exploits0References3Affected Software1
debiancve
debiancve
added 6 days ago5 views

CVE-2026-54423

In OpenStack Ironic before 37.0.1, an Ironic user with the ability to deploy nodes using the IPMI management interface can maliciously use the sendraw step to send arbitrary IPMI commands to a node, bypassing Ironic's access control...

8.2CVSS6.2AI score0.00516EPSS
Exploits0
cvelist
cvelist
added 6 days ago31 views

CVE-2026-44918

OpenStack Ironic through before 37.0.1 allows creation or modification of nodes cross-project without authorization...

5.5CVSS0.00426EPSS
Exploits0References4
cve
cve
added 6 days ago9 views

CVE-2026-44918

OpenStack Ironic (up to 37.0.1) allows an authenticated project manager to create/modify nodes across projects without authorization, potentially misconfiguring which project owns a node and exposing secrets stored in volume connectors/targets. Red Hat notes a specific flaw where a manager can re...

5.5CVSS5.9AI score0.00426EPSS
Exploits0References5
euvd
euvd
added 6 days ago7 views

EUVD-2026-42777

OpenStack Ironic through before 37.0.1 allows creation or modification of nodes cross-project without authorization...

5.5CVSS5.9AI score0.00426EPSS
Exploits0References4
attackerkb
attackerkb
added 6 days ago7 views

CVE-2026-44918

OpenStack Ironic through before 37.0.1 allows creation or modification of nodes cross-project without authorization...

5.5CVSS5.9AI score0.00426EPSS
Exploits0References5Affected Software1
cgr
cgr
added 2026/07/07 8:24 p.m.5 views

GHSA-XJMJ-P278-4JP5 vulnerabilities

Vulnerabilities for packages: openstack-nova-2025.2...

5.9AI score
Exploits0
cgr
cgr
added 2026/07/07 8:24 p.m.6 views

GHSA-MFMJ-GWG3-VHW7 vulnerabilities

Vulnerabilities for packages: openstack-nova-2025.2...

5.9AI score
Exploits0
cgr
cgr
added 2026/07/07 8:24 p.m.7 views

GHSA-5MJ6-643F-2G85 vulnerabilities

Vulnerabilities for packages: openstack-nova-2025.2...

5.9AI score
Exploits0
cgr
cgr
added 2026/07/07 8:24 p.m.7 views

CVE-2015-0259 vulnerabilities

Vulnerabilities for packages: openstack-nova-2025.2...

5.1CVSS5.9AI score0.01061EPSS
Exploits0
cgr
cgr
added 2026/07/07 8:24 p.m.7 views

CVE-2014-3608 vulnerabilities

Vulnerabilities for packages: openstack-nova-2025.2...

2.7CVSS5.9AI score0.0171EPSS
Exploits1
cgr
cgr
added 2026/07/07 8:24 p.m.7 views

CVE-2014-3517 vulnerabilities

Vulnerabilities for packages: openstack-nova-2025.2...

4.3CVSS5.9AI score0.01938EPSS
Exploits0
Rows per page
Query Builder