Home
MEDIUM: 5.8 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:NDefault status
unaffected
17.0.0 (semver) before 26.1.7
affected
27.0.0 (semver) before 29.0.6
affected
30.0.0 (semver) before 32.0.2
affected
33.0.0 (semver) before 35.0.2
affected
Description
OpenStack Ironic before 35.0.2 allows Boot Script Injection of an iPXE script if the attacker can set node.driver_info or node.instance_info.
Problem types
CWE-669 Incorrect Resource Transfer Between Spheres
Product status
17.0.0 (semver) before 26.1.7
27.0.0 (semver) before 29.0.6
30.0.0 (semver) before 32.0.2
33.0.0 (semver) before 35.0.2
References
www.openwall.com/lists/oss-security/2026/06/03/11
bugs.launchpad.net/ironic/+bug/2150624
security.openstack.org/ossa/OSSA-2026-017.html