CVE-2026-44917

MEDIUM

Openstack Ironic - Incorrect Resource Transfer Between Spheres

Title source: rule

Description

OpenStack Ironic before 35.0.2 allows a malicious authenticated project admin or manager to read local files on the Ironic conductor via a pxe_template.

References (3)

Core 3

Core References

https://bugs.launchpad.net/ironic/+bug/2148319

Mailing List

http://www.openwall.com/lists/oss-security/2026/06/03/13

https://www.openwall.com/lists/oss-security/2026/06/03/13

Scores

CVSS v3 4.9

EPSS 0.0029

EPSS Percentile 20.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-669

Status published

Products (5)

OpenStack/Ironic 17.0.0 - 26.1.7

openstack/ironic 17.0.0 - 26.1.7

OpenStack/Ironic 27.0.0 - 29.0.6

OpenStack/Ironic 30.0.0 - 32.0.2

OpenStack/Ironic 33.0.0 - 35.0.2

Published Jun 04, 2026

Tracked Since Jun 04, 2026