CVE-2015-5306
OpenStack Ironic Inspector - RCE
Title source: llmDescription
OpenStack Ironic Inspector (aka ironic-inspector or ironic-discoverd), when debug mode is enabled, might allow remote attackers to access the Flask console and execute arbitrary Python code by triggering an error.
Scores
EPSS
0.0057
EPSS Percentile
68.2%
Classification
CWE
CWE-254
Status
draft
Affected Products (3)
openstack/ironic_inspector
pypi/python-ironic-inspector-client
< 0.2.5PyPI
pypi/ironic-inspector
< 2.2.2PyPI
Timeline
Published
Nov 25, 2015
Tracked Since
Feb 18, 2026