Products
OpenStack Ironic
- before 21.4.4
- 22.x before 23.0.3
- 23.x before 24.1.3
- 25.x before 26.1.0
Source
cve@mitre.org
Tags
CVE-2024-47211 details
Published : Oct. 4, 2024, 6:15 p.m.
Last Modified : Oct. 4, 2024, 6:15 p.m.
Last Modified : Oct. 4, 2024, 6:15 p.m.
Description
In OpenStack Ironic before 21.4.4, 22.x and 23.x before 23.0.3, 23.x and 24.x before 24.1.3, and 25.x and 26.x before 26.1.0, there is a lack of checksum validation of supplied image_source URLs when configured to convert images to a raw format for streaming.
CVSS Score
| 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
|---|
Weakness
| Weakness | Name | Description |
|---|
References
| URL | Source |
|---|---|
| https://github.com/openstack/ironic/compare/24.1.2...26.1.0 | cve@mitre.org |
| https://github.com/openstack/ironic/security | cve@mitre.org |
| https://github.com/openstack/ironic/tags | cve@mitre.org |
| https://security.openstack.org/ossa/OSSA-2024-004.html | cve@mitre.org |
This website uses the NVD API, but is not approved or certified by it.