HIGH7.7CVE-2026-46447OpenStack Ironic before 35.0.2 allows Boot Script Injection of an iPXE script if the attacker can set node.driver_info or node.instance_inf… from 0
HIGH7.7CVE-2026-42997OpenStack Ironic has an Incorrect Resource Transfer Between Spheres from 0
HIGH7.5CVE-2016-4985OpenStack Ironic Exposure of Sensitive Information to an Unauthorized Actor from 0, < 1:5.1.2-1
MEDIUM6.8In OpenStack Ironic through 35.0.1, when applying a PATCH to update fields in volume properties the user is authorized for, Ironic can retu…
from 0
MEDIUM6.6OpenStack Ironic is Vulnerable to Inclusion of Functionality from Untrusted Control Sphere
from 0
MEDIUM6.5OpenStack Ironic 4.2.0 through 4.2.1 does not "clean" the disk after use, which allows remote authenticated users to obtain sensitive infor…
from 0, < 1:4.2.2-1
MEDIUM5.9OpenStack Ironic through before 35.0.2 allows file overwrite via directory traversal during deployment with a crafted ISO image.
from 0
MEDIUM5.3In OpenStack Ironic 32 before 37.0.0, an unauthenticated malicious user could submit a crafted JSON string to some endpoints on the API or…
from 0
MEDIUM5.3OpenStack Ironic fails to verify checksums of supplied image_source URLs
from 0
MEDIUM4.9OpenStack Ironic before 35.0.2 allows a malicious authenticated project admin or manager to read local files on the Ironic conductor via a…
from 0
MEDIUM4.3OpenStack Ironic: Pre-Validation Checksum Calculation allows Denial of Service (DoS) via Infinite Block Devices
from 0
MEDIUM4.3In OpenStack Ironic before 26.0.1 and ironic-python-agent before 9.13.1, there is a vulnerability in image processing, in which a crafted i…
from 0
LOW3.0In OpenStack Ironic before 35.0.2 (in a certain non-default configuration), instance_info['ks_template'] is rendered without sandboxing.
from 0
LOW2.8OpenStack Ironic fails to restrict paths used for file:// image URLs
from 0